search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-10-30 2007-10-09 2007-11-12 VU#180345 Microsoft Kodak Image Viewer code execution vulnerability
2003-06-12 2002-10-09 2003-06-12 VU#102345 IBM AIX vulnerable to DoS
2005-07-06 2005-06-29 2007-03-09 VU#442845 Multiple PHP XML-RPC implementations vulnerable to code injection
2006-05-30 2006-05-30 2006-06-07 VU#919345 Secure Elements Class 5 AVR server fails to validate source address of messages
2006-05-30 2006-05-30 2006-06-07 VU#353945 Secure Elements Class 5 AVR client generates predictable CEIDs
2006-01-11 2006-01-10 2006-01-13 VU#629845 Apple QuickTime image handling buffer overflow
2009-10-13 2009-07-10 2009-10-16 VU#654545 Wyse Device Manager (WDM) HServer and HAgent contain multiple vulnerabilities
2005-11-03 2005-11-02 2005-11-03 VU#562945 Cisco IOS heap integrity checks are insufficient
2001-11-15 1999-11-10 2001-11-15 VU#13145 BIND memcpy not bounded in case T_SIG of rrextract()
2007-03-06 2007-03-06 2007-03-19 VU#568689 Apple QuickTime 3GP integer overflow
2006-01-31 2006-01-29 2006-02-23 VU#604745 Winamp fails to properly handle playlists with long "file" parameter
2002-05-30 2002-05-18 2002-06-04 VU#251339 Verisign transmits sensitive customer information in plain text when applying for a "Code Signing Digital ID"
2007-02-23 2007-02-22 2009-04-13 VU#441785 SupportSoft ActiveX controls contain multiple buffer overflows
2007-06-06 2007-06-04 2007-07-16 VU#138545 Java Runtime Environment Image Parsing Code buffer overflow vulnerability
2002-02-28 2002-02-06 2002-03-15 VU#878603 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Authorization header

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis