search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-06-06 2008-06-04 2008-06-06 VU#949587 HP Online Support Services ActiveX DownloadFile() arbitrary file download
2008-06-06 2008-06-04 2008-06-07 VU#190939 HP Online Support Services ActiveX AppendStringToFile() arbitrary file writing
2008-06-06 2008-06-04 2008-06-07 VU#857539 0 HP Online Support Services ActiveX DeleteSingleFile() arbitrary file deletion
2008-06-06 2008-06-04 2008-06-07 VU#998779 0 HP Online Support Services ActiveX StartApp() arbitrary code execution
2008-05-27 2008-05-27 2008-06-09 VU#395473 Adobe Flash player code execution vulnerability
2008-06-10 2008-06-10 2008-06-10 VU#216153 BackWeb Lite Install Runner ActiveX stack buffer overflows
2008-06-10 2008-06-09 2008-06-10 VU#132419 Apple QuickTime "file: URL" arbitrary code execution
2008-06-11 2007-11-21 2008-06-11 VU#315107 SkyPortal contains multiple SQL injection vulnerabilities
2008-01-02 2007-05-18 2008-06-16 VU#249337 Flash authoring tools create Flash files that contain cross-site scripting vulnerabilities
2008-06-20 2008-06-19 2008-06-20 VU#127185 Apple Safari automatically executes downloaded files based on Internet Explorer zone settings
2008-06-25 2008-06-23 2008-06-25 VU#788019 Adobe Reader and Adobe Acrobat contain an unspecified flaw in a JavaScript method
2008-06-25 2007-12-05 2008-06-25 VU#305208 Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
2008-06-26 2008-06-18 2008-06-27 VU#923508 Microsoft Internet Explorer 6 contains a cross-domain vulnerability
2008-06-18 2008-06-17 2008-06-27 VU#858993 Deterministic Network Enhancer privilege escalation vulnerability
2008-07-01 2008-06-19 2008-07-01 VU#361043 Apple Safari contains a memory corruption issue in the handling of JavaScript arrays by WebKit

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis