search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-16 2002-04-17 2007-06-05 VU#711843 Microsoft Internet Explorer contains cross-site scripting vulnerabilities in local HTML resources
2001-07-27 2001-07-02 2001-07-30 VU#654643 Allaire JRun Java Application Server vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2008-03-12 2008-03-11 2008-03-13 VU#654577 Microsoft Office Web Components Spreadsheet ActiveX control URL parsing stack buffer overflow
2006-03-03 2005-12-22 2006-03-06 VU#351217 Apple Safari WebKit component vulnerable to buffer overflow
2002-09-10 2002-08-30 2002-09-10 VU#173977 HP Tru64 UNIX "ps" contains buffer overflow (SSRT2256)
2002-07-25 2002-04-18 2003-02-05 VU#796313 Microsoft SQL Server service account registry key has weak permissions that permit privilege escalation
2004-08-27 2004-03-19 2004-08-27 VU#996177 Multiple memory leak vulnerabilities in isakmpd
2002-12-04 2002-11-25 2002-12-13 VU#140977 SSH Secure Shell for Workstations contains buffer overflow in URL-handling feature
2011-01-25 2011-01-28 2011-01-25 VU#528212 Lomtec ActiveWeb Professional 3.0 CMS allows arbitrary file upload and execution
2002-09-16 2002-03-28 2002-12-10 VU#152955 IBM AIX FC contains buffer overflow exploitable during session setup
2003-02-12 2003-01-21 2003-02-12 VU#825177 Apache allows arbitrary code execution via crafted POST request containing MS-DOS device name
2002-09-20 2002-08-01 2002-09-20 VU#137555 HP Tru64 UNIX "chfn" contains buffer overflow (SSRT2259)
2006-12-15 2006-12-14 2007-01-12 VU#607312 Symantec Veritas NetBackup bpcd daemon buffer overflow
2006-05-30 2006-05-30 2006-06-07 VU#921017 Secure Elements Class 5 AVR client sends messages in cleartext
2001-04-10 2001-04-10 2001-04-11 VU#490344 Alcatel ADSL modems provide unauthenticated TFTP access via physical WAN interface

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis