search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-01-16 2002-01-16 2002-01-16 VU#185251 cgiemail web-based email system does not adequately validate user input thereby causing buffer overflow in cgisco.c
2006-02-14 2006-02-14 2006-02-22 VU#692060 Microsoft Windows Media Player plug-in buffer overflow
2008-03-15 2008-02-01 2008-03-17 VU#721460 UltraVNC buffer overflow vulnerability
2008-03-06 2008-02-26 2008-03-06 VU#661651 Mozilla Thunderbird external-body MIME type buffer overflow
2002-09-27 2002-02-21 2002-09-27 VU#462451 Microsoft Internet Explorer allows read access to local files via incorrect VBScript handling
2000-12-15 1997-05-24 2000-12-15 VU#20851 SGI IRIX df buffer overflow in directory argument
2011-09-30 2011-09-30 2011-09-30 VU#901251 ProjectForum XSS vulnerability
2002-01-31 2001-10-01 2002-01-31 VU#507771 AOL Instant Messenger vulnerable to DoS via crafted packets
2007-11-13 2007-11-05 2007-11-13 VU#690515 Apple QuickTime buffer overflow vulnerability
2001-09-10 2001-05-24 2001-09-10 VU#718971 Beck GmbH IPC@CHIP HTTPD vulernable to arbitrary file disclosure
2010-07-12 2010-07-07 2010-07-12 VU#732671 Cisco Industrial Ethernet 3000 Series switches have hardcoded SNMP community strings
2002-09-27 2001-06-07 2002-09-27 VU#771771 Shambala FTP Server does not adequately validate user input thereby allowing directory traversal
2007-05-25 2007-05-24 2007-06-20 VU#221876 Apple Mac OS X mDNSResponder buffer overflow vulnerability
2004-02-05 2004-02-04 2004-04-23 VU#790771 HTTP Parsing Vulnerabilities in Check Point Firewall-1
2002-06-13 2001-09-20 2002-06-13 VU#133771 Lotus Domino Web Server discloses IP address

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis