search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-24 2001-12-25 2002-09-24 VU#282403 AdCycle does not adequately validate user input thereby allowing for SQL injection
2007-12-19 2007-12-19 2008-01-15 VU#758769 Adobe Flash Player asfunction protocol may enable cross-site scripting
2006-02-14 2006-02-14 2006-03-17 VU#291396 Microsoft Windows Media Player vulnerable to buffer overflow in bitmap processing routine
2001-05-17 2000-08-31 2001-06-21 VU#686403 ld.so fails to unset LD_PRELOAD before executing suid root programs
2001-10-18 2001-07-25 2001-10-22 VU#847803 Php variables passed from the browser are stored in global context
2002-07-30 2002-07-30 2002-09-30 VU#561275 OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process
2006-02-09 2006-02-07 2006-05-03 VU#759996 Sun Java Reflection API security bypass vulnerabilities
2005-07-06 2005-04-16 2005-07-06 VU#998369 Apple Web Kit-based browsers may allow remote access to local filesystem contents
2003-03-20 2003-03-15 2003-05-09 VU#442569 MIT Kerberos vulnerable to ticket splicing when using Kerberos4 triple DES service tickets
2006-06-02 2006-06-01 2007-02-09 VU#575969 Mozilla may process content-defined setters on object prototypes with elevated privileges
2002-06-12 2002-06-04 2002-06-12 VU#440275 Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
2006-12-08 2006-11-22 2006-12-13 VU#208769 Microsoft Windows Media Player fails to properly handle malformed Windows Media Metafiles
2011-06-27 2011-06-27 2011-06-27 VU#246310 Parodia blind SQL injection vulnerability
2005-08-31 2005-08-25 2005-09-16 VU#902110 Reflection for Secure IT Windows Server can allow login to renamed built-in accounts
2008-02-13 2008-02-12 2008-02-13 VU#228569 Microsoft Internet Explorer property memory corruption vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis