search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-07-18 2001-03-26 2002-05-20 VU#176888 Linux kernel contains race condition via ptrace/procfs/execve
2004-04-13 2004-04-13 2004-04-14 VU#740716 Microsoft Jet Database Engine database request handling buffer overflow
2004-10-13 2004-10-12 2004-10-15 VU#625616 Microsoft Internet Explorer does not properly handle navigations from plug-ins
2007-01-24 2007-01-24 2007-01-31 VU#341288 Cisco IOS fails to properly process certain packets containing a crafted IP option
2006-01-24 2006-01-17 2006-01-24 VU#629316 Oracle Database SYS.DBMS_METADATA_UTIL package SQL injection vulnerability
2005-10-11 2005-10-11 2005-12-15 VU#950516 Microsoft COM+ contains a memory management flaw
2007-04-03 2007-04-03 2007-05-16 VU#220816 MIT Kerberos 5 telnet daemon allows login as arbitrary user
2004-03-25 2004-03-22 2004-04-06 VU#740188 Ethereal IrDA dissector plugin fails to properly parse IRCOM_PORT_NAME parameter
2006-11-14 2006-08-28 2006-11-14 VU#813588 Microsoft DirectAnimation Path ActiveX control Spline method integer overflow
2007-03-28 2007-03-28 2007-03-28 VU#927988 IBM Lotus Domino LDAP server DN message heap buffer overflow
2007-06-25 2007-06-25 2007-09-21 VU#289988 Apple Safari cross-domain HTTP redirection race condition
2006-07-11 2006-07-11 2006-07-11 VU#409316 Microsoft Office fails to properly handle document properties
2006-05-01 2006-04-21 2006-05-01 VU#118388 Symantec Scan Engine fails to properly perform authentication
2006-10-12 2006-10-10 2006-10-31 VU#562788 Microsoft XML Core Services contain a buffer overflow in the XSLT component
2005-08-23 2005-08-19 2005-10-21 VU#619988 Computer Associates Message Queuing software vulnerable to buffer overflows

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis