search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-04-28 2006-04-21 2006-05-31 VU#167033 0 Winny contains a buffer overflow
2008-06-10 2008-05-31 2009-07-16 VU#878044 0 SNMPv3 improper HMAC validation allows authentication bypass
2005-01-07 2004-12-23 2014-04-23 VU#177584 0 Microsoft Windows kernel vulnerable to a denial-of-service condition via animated cursor (.ani) frame number
2012-12-17 2012-12-17 2014-05-15 VU#323161 0 Adobe Shockwave player provides vulnerable Flash runtime
2008-10-02 2008-09-05 2008-10-02 VU#889484 0 libpng off-by-one vulnerability
2004-09-17 2004-09-14 2004-09-17 VU#808216 0 Mozilla contains heap overflow in UTF8 conversion of hostname portion of URLs
2011-09-27 2002-02-08 2011-12-08 VU#864643 0 SSL 3.0 and TLS 1.0 allow chosen plaintext attack in CBC modes
2008-06-06 2008-06-04 2008-06-06 VU#754403 0 HP Online Support Services ActiveX ExtractCab() buffer overflow
2003-12-09 2003-10-03 2006-05-01 VU#325603 0 Integer overflow vulnerability in rsync
2007-08-01 2007-08-02 2007-08-28 VU#724968 0 RSA key reconstruction vulnerability
2009-03-10 2009-03-10 2009-03-17 VU#319331 0 Microsoft Windows DNS Server response validation vulnerability
2004-10-21 2004-10-12 2004-10-22 VU#203126 0 Microsoft IIS contains vulnerability in NNTP service
2012-02-23 2012-02-15 2012-03-02 VU#523889 0 libpng chunk decompression integer overflow vulnerability
2005-10-19 2005-10-18 2006-01-18 VU#210524 0 Oracle products contain multiple vulnerabilities
2007-05-08 2007-05-08 2007-05-10 VU#253825 0 Microsoft Excel fails to properly process files with crafted filter records

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis