search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-11 2002-09-09 2003-11-07 VU#307306 Microsoft Java implementation JDBC classes do not properly validate DLL requests
2006-05-30 2006-05-30 2006-06-07 VU#288121 Secure Elements Class 5 AVR client fails to validate source address of messages
2002-06-13 2001-09-20 2002-06-13 VU#133771 Lotus Domino Web Server discloses IP address
2002-06-04 2002-05-27 2002-06-13 VU#630091 Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2007-05-29 2007-05-25 2007-05-29 VU#125868 Avast! antivirus buffer overflow vulnerability
2008-06-25 2007-12-05 2008-06-25 VU#305208 Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
2006-10-11 2006-10-10 2006-11-17 VU#534276 Microsoft Office fails to properly parse malformed chart records
2006-10-25 2006-08-24 2006-10-25 VU#638376 Wireshark contains multiple off-by-one errors in the IPSec ESP preference parser
2004-02-05 2004-02-04 2004-04-23 VU#790771 HTTP Parsing Vulnerabilities in Check Point Firewall-1
2004-01-15 2003-12-22 2004-01-16 VU#281356 Sun Solaris tcsh(1) contains vulnerability in the built-in ls-F command
2005-08-09 2005-07-15 2005-08-16 VU#965206 Microsoft Internet Explorer JPEG rendering library vulnerable to buffer overflow
2002-07-26 2002-07-24 2006-05-08 VU#484891 Microsoft SQL Server 2000 contains stack buffer overflow in SQL Server Resolution Service
2006-01-09 2005-12-27 2006-01-09 VU#646976 Research in Motion (RIM) BlackBerry Attachment Service does not properly handle PNG image files
2006-02-15 2006-02-10 2006-02-15 VU#884076 IBM Lotus Notes ZIP file handling buffer overflow
2007-05-25 2007-05-24 2007-06-20 VU#221876 Apple Mac OS X mDNSResponder buffer overflow vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis