search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2011-02-03 2010-10-20 2011-02-03 VU#237495 MOXA Device Manager MDM Tool buffer overflow
2006-09-20 2005-02-25 2008-07-21 VU#468798 SISCO OSI stack fails to properly validate packets
2004-08-25 2004-08-23 2005-05-16 VU#928598 Sun Solaris dtmail contains a format string vulnerability
2001-03-27 2001-03-22 2001-03-31 VU#869360 Unauthentic "Microsoft Corporation" certificates issued by Verisign to an unidentifed person
2004-11-22 2004-10-12 2007-02-27 VU#582498 InnerMedia DynaZip library vulnerable to buffer overflow via long file names
2006-09-01 2006-09-01 2006-09-08 VU#649289 Retro64 / Miniclip CR64Loader ActiveX control buffer overflow
2004-11-03 2004-11-03 2004-11-03 VU#107998 MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request
2007-02-26 2007-01-30 2007-03-16 VU#836024 Apple iChat fails to properly handle crafted TXT key hashes
2004-03-18 2004-03-10 2004-03-18 VU#415734 F-Secure Anti-Virus for Linux fails to properly detect Sober.D virus
2006-05-30 2006-05-30 2006-05-30 VU#346377 Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session
2004-04-09 2004-04-07 2004-04-09 VU#552398 KAME Racoon IKE daemon fails to properly verify client RSA signatures
2006-12-13 2006-12-12 2007-01-05 VU#901584 Microsoft Windows SNMP Memory Corruption Vulnerability
2005-02-04 2005-01-17 2005-02-11 VU#924198 Squid LDAP authentication routines fail to check for invalid input
2000-10-31 2000-05-12 2000-10-31 VU#35626 Office 2000 UA Control incorrectly marked safe for scripting
2004-10-19 2004-10-13 2004-12-06 VU#673134 Microsoft MSN "Hrtbeat.ocx" ActiveX control contains unspecified vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis