search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-09-29 2006-07-25 2006-09-29 VU#713092 FileCOPA FTP server vulnerable to buffer overflow
2004-05-13 2004-05-12 2004-05-13 VU#637318 Multiple Symantec firewall products contain a buffer overflow in the processing of DNS resource records
2004-01-22 2004-01-21 2004-01-23 VU#721092 Cisco IBM Director agent does not properly handle arbitrary TCP packets to port 14247/tcp
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2004-03-25 2004-03-19 2004-03-25 VU#344718 Norton AntiSpam contains boundary error within the "SymSpamHelper Class" (symspam.dll) ActiveX component.
2002-08-22 2002-08-21 2002-08-22 VU#746251 Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
2006-06-14 2006-06-14 2011-07-22 VU#146718 Sendmail fails to handle malformed multipart MIME messages
2005-05-19 2005-05-19 2005-05-19 VU#372618 Groove Mobile Workspace vulnerable to script injection via SharePoint lists containing picture columns
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2010-06-10 2010-06-09 2010-07-13 VU#578319 Microsoft Windows Help and Support Center URI processing vulnerability
2006-11-21 2006-09-28 2007-03-28 VU#693992 NaviCOPA Web Server fails to properly handle certain HTTP requests
2006-11-01 2006-10-05 2007-01-12 VU#361792 Computer Associates Discovery Service buffer overflow
2002-01-03 2002-01-02 2002-01-16 VU#907819 AOL Instant Messenger client for Windows contains a buffer overflow while parsing TLV 0x2711 packets
2002-06-13 2002-06-12 2004-02-23 VU#313819 Microsoft Internet Information Server (IIS) contains remote buffer overflow in chunked encoding data transfer mechanism for HTR
2007-01-18 2006-12-19 2007-03-05 VU#405092 Mozilla products allows the src attribute in an img element to be changed to a JavaScript URI

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis