search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-07-27 2006-07-25 2007-07-17 VU#527676 Mozilla contains multiple memory corruption vulnerabilities
2001-11-15 2001-08-24 2001-11-15 VU#465971 BSCW vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2006-01-11 2006-01-10 2006-01-12 VU#921193 Apple QuickTime fails to properly handle corrupt media files
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2006-07-13 2006-07-10 2006-11-14 VU#474593 Adobe Flash Player fails to properly handle malformed SWF files
2004-10-13 2004-10-12 2004-10-18 VU#431576 Microsoft Internet Explorer vulnerable to address bar spoofing on double byte character set systems
2001-01-28 1996-02-05 2006-04-17 VU#20276 phf CGI Script fails to guard against newline characters
2004-03-24 2004-03-22 2004-03-25 VU#119876 Ethereal contains multiple vulnerabilities in the EIGRP protocol dissector
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-07-30 2002-07-30 2002-09-30 VU#308891 OpenSSL contains multiple buffer overflows in buffers that are used to hold ASCII representations of integers
2001-10-16 2001-09-11 2002-01-03 VU#466239 IBM AIX line printer daemon contains a buffer overflow in chk_fhost()
2005-08-01 2005-07-13 2005-08-15 VU#652366 Mozilla insecurely clones objects and member functions
2009-07-14 2009-07-14 2009-07-29 VU#410676 ISC DHCP dhclient stack buffer overflow
2006-09-22 2006-09-20 2006-09-26 VU#642076 Cisco Intrusion Prevention System administration interface fails to properly handle Secure Socket Layer packets
2004-10-12 2004-09-23 2004-10-12 VU#668206 Macromedia JRun Server is vulnerable to a cross-site scripting attack

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis