search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-21 2004-12-21 2005-02-22 VU#260421 0 Squid fails to parse empty access control lists correctly
2008-06-06 2008-06-04 2008-06-06 VU#754403 0 HP Online Support Services ActiveX ExtractCab() buffer overflow
2009-07-22 2009-07-22 2009-08-07 VU#259425 0 Adobe Flash vulnerability affects Flash Player and other Adobe products
2007-11-19 2007-11-19 2008-02-26 VU#138633 0 Invensys Wonderware InTouch creates insecure NetDDE share
2007-05-16 2007-05-16 2007-08-23 VU#684664 0 libpng denial of service vulnerability
2008-12-02 2008-09-26 2009-01-13 VU#976484 0 RealFlex RealWin buffer overflow
2009-02-26 2009-02-24 2009-06-09 VU#461321 0 HP Virtual Rooms ActiveX control fails to restrict access to dangerous methods
2009-04-15 2009-04-15 2009-05-27 VU#789121 0 Microsoft Whale Intelligent Application Gateway Whale Client Components ActiveX control stack buffer overflows
2008-01-25 2008-01-24 2008-11-13 VU#180876 0 GE Fanuc Proficy Information Portal transmits authentication credentials in plain text
2008-06-06 2008-06-04 2008-06-07 VU#857539 0 HP Online Support Services ActiveX DeleteSingleFile() arbitrary file deletion
2011-12-28 2011-12-28 2016-02-15 VU#903934 0 Hash table implementations vulnerable to algorithmic complexity attacks
2007-11-09 2007-08-03 2007-11-20 VU#310057 0 Guidance EnCase fails to detect more than 25 partitions
2010-11-18 2010-11-16 2010-11-19 VU#300785 0 PGP Desktop unsigned data injection vulnerability
2002-03-01 2002-02-25 2002-07-05 VU#230307 0 Linux kernel netfilter IRC DCC helper module creates overly permissive firewall rules
2008-09-09 2008-09-09 2008-10-02 VU#996227 0 Windows Media Encoder WMEX.DLL ActiveX Control buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis