search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-12-12 2007-12-11 2007-12-13 VU#319385 Microsoft Windows Media Format Runtime ASF handling buffer overflow
2007-12-12 2007-12-11 2007-12-12 VU#520465 Microsoft SMBv2 signing vulnerability
2007-12-14 2007-12-14 2008-01-10 VU#205073 Gesytec Easylon OPC Server fails to properly validate OPC server handles
2007-12-14 2006-05-31 2007-12-14 VU#312692 Shadow Utils useradd utility sets incorrect file permissions
2007-12-14 2007-12-11 2007-12-14 VU#804089 Microsoft DirectX SAMI parsing buffer overflow
2007-12-14 2007-12-11 2007-12-14 VU#321233 Microsoft DirectX remote code execution
2007-12-17 2007-12-11 2007-12-19 VU#120593 Meridian Prolog Manager uses weak authentication to store and transmit user credentials
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2007-12-19 2007-12-19 2008-01-15 VU#758769 Adobe Flash Player asfunction protocol may enable cross-site scripting
2007-12-21 2007-12-20 2009-04-13 VU#963889 IBM Lotus Domino Web Access ActiveX control stack buffer overflows
2008-01-02 2007-05-18 2008-06-16 VU#249337 Flash authoring tools create Flash files that contain cross-site scripting vulnerabilities
2008-01-03 2007-12-28 2008-01-23 VU#553235 Jetty fails to properly process URLs that contain double / characters
2008-01-03 2007-11-30 2008-01-03 VU#150249 OpenSSL FIPS Object Module fails to properly generate random seeds
2008-01-08 2008-01-08 2008-01-14 VU#921339 SSH Tectia Client and Server ssh-signer local privilege escalation
2008-01-08 2008-01-08 2008-01-08 VU#410025 Microsoft Windows LSASS privilege escalation vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis