CERT Vulnerability Notes Database

Published	Public	Updated	ID	CVSS	Title
2007-11-13	2007-11-13	2007-11-13	VU#484649		Microsoft Windows DNS Server vulnerable to cache poisoning
2007-11-14	2007-11-05	2007-11-14	VU#797875		Apple QuickTime code execution vulnerability
2007-11-14	2007-10-14	2007-11-15	VU#498105		Apple Mac OS X CoreText uninitialized pointer vulnerability
2007-11-15	2007-11-05	2007-11-15	VU#445083		Apple QuickTime heap buffer overflow vulnerability
2007-11-15	2007-10-11	2007-11-19	VU#544656		libFLAC contains multiple vulnerabilities
2007-11-16	2007-10-29	2007-11-16	VU#759385		RealNetworks player "Lyrics3" buffer overflow
2007-11-19	2007-11-19	2008-02-26	VU#138633	0	Invensys Wonderware InTouch creates insecure NetDDE share
2007-11-20	2007-11-20	2007-11-20	VU#512193		IBM Director fails to properly time-out connection requests from clients
2007-11-24	2007-11-23	2008-01-11	VU#659761		Apple QuickTime RTSP Content-Type header stack buffer overflow
2007-11-27	2007-11-25	2007-11-27	VU#433819		Apple Mail remote command execution vulnerability
2007-12-04	2007-11-05	2007-12-04	VU#237888		Mortbay Jetty Dump Servlet vulnerable to cross-site scripting
2007-12-04	2007-11-05	2007-12-04	VU#438616		Mortbay Jetty fails to properly handle cookies with quotes
2007-12-04	2007-11-03	2007-12-04	VU#212984		Mortbay Jetty vulnerable to HTTP response splitting
2007-12-10	2007-11-27	2008-01-18	VU#232881		Squid remote denial-of-service vulnerability
2007-12-11	2007-12-11	2007-12-11	VU#601073		Microsoft Windows Vista privilege escalation vulnerability

Software Engineering Institute