search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-07-30 2003-07-29 2003-07-30 VU#682900 SGI IRIX name services daemon (nsd) and modules mishandle AUTH_UNIX gid list
2005-08-17 2005-08-15 2005-08-17 VU#420316 Apple Mac OS X Safari vulnerable to arbitrary command execution via URLs in PDF files
2007-02-20 2007-02-13 2007-02-23 VU#511577 Microsoft Malware Protection Engine fails to properly process a specially crafted PDF File
2005-09-29 2005-09-29 2005-09-29 VU#602300 AIX "getconf" contains buffer overflow vulnerability
2007-08-23 2007-08-21 2007-08-23 VU#959400 Trend Micro ServerProtect Integer Overflow Vulnerability
2002-11-20 2002-11-20 2002-11-21 VU#181721 Alcatel Operating System (AOS) does not require a password for accessing the telnet server
2005-05-10 2005-04-19 2005-05-13 VU#668916 Microsoft Windows Explorer vulnerable to script injection via the Web View DLL
2004-08-23 2004-08-09 2004-08-23 VU#770816 CVSTrac fails to properly sanitize input passed to "filediff"
2005-10-21 2005-10-18 2005-10-21 VU#512716 Oracle Application Server Web Cache vulnerability
2011-01-05 2011-01-04 2011-02-08 VU#106516 Microsoft Windows graphics engine thumbnail stack buffer overflow
2002-04-02 2002-04-01 2004-02-23 VU#640827 IBM AIX Parallel Systems Support Program (PSSP) contains vulnerability in File Collections subsystem allowing arbitrary access to sensitive configuration files
2001-07-17 2001-07-16 2002-12-12 VU#935800 Multiple versions of OpenLDAP are vulnerable to denial-of-service attacks
2006-05-02 2006-04-24 2006-05-18 VU#866300 Mozilla Firefox designMode deleted object reference
2001-01-29 2001-01-29 2002-12-06 VU#868916 ISC BIND 4 contains input validation error in nslookupComplain()
2000-10-31 1999-09-10 2005-08-29 VU#9162 Wang/Kodak Image Edit ActiveX control

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis