search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-12-05 2006-12-04 2006-12-05 VU#914617 Microsoft Windows Print Spooler service fails to properly handle RPC requests
2007-03-06 2007-03-06 2007-03-19 VU#861817 Apple QuickTime UDTA atom integer overflow
2004-03-24 2004-03-22 2004-04-05 VU#792286 Ethereal fails to properly handle a zero-length Presentation protocol selector
2005-04-27 2005-04-12 2005-04-28 VU#948486 Oracle products contain multiple vulnerabilities
2007-06-08 2007-06-07 2007-06-11 VU#932217 Yahoo! Webcam view utilities ActiveX control vulnerable to arbitrary code execution
2005-02-01 2004-09-05 2005-02-03 VU#961686 QNX PPPoEd vulnerable to buffer overflow
2006-09-19 2006-09-18 2007-03-21 VU#416092 Microsoft Internet Explorer VML stack buffer overflow
2006-05-30 2006-05-30 2007-05-04 VU#487617 Secure Elements Class 5 AVR server fails to properly authenticate session start messages
2006-05-30 2006-05-30 2006-06-07 VU#921017 Secure Elements Class 5 AVR client sends messages in cleartext
2006-03-03 2005-12-22 2006-03-06 VU#351217 Apple Safari WebKit component vulnerable to buffer overflow
2007-06-08 2007-06-07 2007-06-11 VU#949817 Yahoo! Webcam image upload ActiveX control vulnerable to arbitrary code execution
2004-05-06 2004-01-26 2004-05-06 VU#444158 Gaim contains a buffer overflow vulnerability in the http_canread() function
2004-11-03 2004-11-03 2004-11-03 VU#306086 MailPost vulnerable file system information disclosure via HTTP GET request
2005-05-16 2005-05-03 2005-05-17 VU#354486 Apple Mac OS X Server NetInfo Setup Tool fails to validate command line parameters
2010-12-07 2010-12-07 2010-12-08 VU#912279 GNU libc regcomp() stack exhaustion denial of service

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis