search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-10-11 2006-10-10 2006-10-31 VU#547212 Microsoft XML Core Services XMLHTTP ActiveX control fails to properly interpret certain HTTP operations
2005-05-16 2005-05-03 2005-05-25 VU#331694 Apple Mac OS X chpass/chfn/chsh utilities do not properly validate external programs
2002-09-09 2002-07-19 2002-09-09 VU#771155 HP Tru64 UNIX "ipcs" contains buffer overflow (SSRT0794U)
2002-03-29 2001-06-19 2004-02-23 VU#219043 Netwin Surge FTP Server does not adequately validate user input thereby allowing directory traversal
2007-02-26 2007-02-08 2007-03-01 VU#303012 HP Mercury products vulnerable to buffer overflow
2002-06-11 2002-05-29 2003-04-03 VU#159203 Novell NetWare default installation contains sample files that disclose sensitive server information
2006-07-11 2006-07-11 2006-07-13 VU#257164 Microsoft DHCP Client service contains a buffer overflow
2012-02-01 2012-02-01 2012-02-01 VU#763355 802.1X password exploit on many HTC Android devices
2001-11-06 2001-11-05 2001-11-06 VU#986843 WS-FTP Server vulnerable to buffer overflow via long string sent as argument to ftp command
2005-02-28 2005-02-28 2005-02-28 VU#795812 Gaim vulnerable to DoS via specially crafted HTML
2003-05-13 2003-04-28 2003-05-13 VU#641012 Kerio Personal Firewall vulnerable to replay attack
2008-06-18 2008-06-12 2009-04-13 VU#145313 Novell iPrint Client ActiveX control stack buffer overflows
2002-06-05 2002-02-26 2002-06-05 VU#755755 Yahoo! Messenger contains a buffer overflow in "set_buddygrp" when adding users to a buddy list via the web
2006-03-03 2005-12-22 2006-03-06 VU#351217 Apple Safari WebKit component vulnerable to buffer overflow
2002-07-25 2002-04-18 2003-02-05 VU#796313 Microsoft SQL Server service account registry key has weak permissions that permit privilege escalation

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis