search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-10-12 2006-10-10 2006-10-31 VU#562788 Microsoft XML Core Services contain a buffer overflow in the XSLT component
2006-10-26 2006-10-03 2006-10-26 VU#796956 Novell GroupWise Messenger fails to properly handle HTTP POST requests.
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing
2006-10-25 2006-08-29 2006-10-25 VU#300368 X.Org fails to check for setuid failure on Linux systems
2006-10-25 2006-08-25 2006-10-25 VU#696896 Wireshark SSCOP dissector fails to properly handle malformed packets
2006-10-25 2006-08-24 2006-10-25 VU#638376 Wireshark contains multiple off-by-one errors in the IPSec ESP preference parser
2006-10-12 2006-08-25 2006-10-25 VU#335656 Wireshark contains an unspecified vulnerability in the DHCP dissector
2006-10-24 2006-10-17 2006-10-24 VU#318764 Oracle DISABLE_HIERARCHY_INTERNAL procedure vulnerable to PL/SQL injection
2006-10-24 2006-10-17 2006-10-24 VU#484380 Opera Web Browser fails to properly process overly long URLs
2006-10-24 2006-10-17 2006-10-24 VU#869292 Oracle MDSYS.SDO_LRS package vulnerable to PL/SQL injection
2006-10-24 2006-10-17 2006-10-24 VU#736324 Oracle SYS.DBMS_CDC_IMPDP package vulnerable to PL/SQL injection
2006-10-24 2006-10-17 2006-10-24 VU#446100 Oracle CREATE_CHANGE_TABLE procedure vulnerable to PL/SQL injection
2006-10-20 2006-10-18 2006-10-20 VU#383092 IBM Lotus Notes sets insecure default permissions on program data
2006-10-19 2006-10-17 2006-10-20 VU#716964 Oracle PREPARE_UNBOUNDED_VIEW procedure vulnerable to PL/SQL injection
2006-07-28 2006-07-27 2006-10-18 VU#395412 Apache mod_rewrite contains off-by-one error in ldap scheme handling

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis