search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-03-04 2004-02-26 2004-03-04 VU#412566 Solaris conv_fix insecure file handling vulnerability
2006-12-13 2006-12-12 2006-12-13 VU#694344 Microsoft Internet Explorer TIF Folder arbitrary file access vulnerability
2001-04-06 2000-06-14 2001-11-19 VU#36866 Solaris ufsrestore buffer overflow in command pathname parameters for interactive session
2006-08-08 2006-08-08 2006-08-08 VU#908276 Microsoft Winsock buffer overflow
2000-12-12 2000-12-10 2000-12-12 VU#17566 sysback makes call to hostname without a fully qualified path specification
2004-10-19 2004-08-31 2004-10-19 VU#925166 PhpWebSite calendar module contains a SQL injection vulnerability
2001-12-13 1998-03-01 2001-12-18 VU#228186 Hot Standby Router Protocol (HSRP) uses weak authentication
2001-05-06 2001-03-13 2002-04-02 VU#154976 Sun Solaris SNMP proxy agent /opt/SUNWssp/bin/snmpd contains buffer overflow
2002-09-27 2001-05-21 2002-09-27 VU#345576 Microsoft Word does not check for macros contained in linked template file when opening RTF document
2004-02-03 2003-10-30 2004-03-19 VU#434566 Apache mod_rewrite vulnerable to buffer overflow via crafted regular expression
2006-04-19 2006-04-19 2006-05-05 VU#621566 Linksys RT31P2 VoIP router denial of service vulnerabilities
2002-07-11 2002-07-10 2002-07-11 VU#821139 Network Associates PGP Outlook Plug-in contains buffer overflow in decoding mechanism
2002-10-11 2002-06-12 2003-08-05 VU#879386 Multiple buffer overflow vulnerabilities in QNX
2005-04-01 2005-03-28 2005-07-28 VU#341908 Multiple Telnet Clients vulnerable to buffer overflow via the env_opt_add() function in telnet.c
2008-05-27 2008-05-27 2008-05-28 VU#501843 Creative Software AutoUpdate Engine ActiveX stack buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis