search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-01-05 2004-12-20 2005-01-14 VU#420222 Konqueror fails to restrict access to Java classes
2002-09-13 2002-08-30 2002-09-13 VU#584243 HP Tru64 UNIX "dtsession" contains buffer overflow (SSRT2282)
2008-12-05 2008-01-03 2008-12-05 VU#528993 Linksys WVC54GC wireless video camera vulnerable to information disclosure
2004-08-20 2004-05-29 2004-08-20 VU#561022 Mozilla contains a buffer overflow in the SendUidl() function
2005-04-12 2005-04-12 2005-04-13 VU#756122 Microsoft Internet Explorer URL validation routine contains a buffer overflow
2005-10-26 2005-10-25 2005-12-19 VU#668193 Skype VCARD handling routine contains a buffer overflow
2008-06-10 2008-06-09 2008-06-10 VU#132419 Apple QuickTime "file: URL" arbitrary code execution
2002-01-14 2002-01-09 2002-01-14 VU#833459 Cisco SN 5420 Storage Router fails to properly authenticate user before granting read access to configuration file
2002-02-27 2002-02-06 2002-03-12 VU#547459 Oracle 9iAS creates temporary files when processing JSP requests that are world-readable
2002-03-04 2002-02-21 2002-03-06 VU#613459 Squid Proxy Server contains buffer overflow in parsing of the authentication portion of FTP URLs
2002-09-27 2000-04-03 2002-09-27 VU#26493 MS Excel XLM Text Macro execution fails to trigger warning when default medium security set
2003-02-14 2003-02-11 2003-07-24 VU#849993 Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function
2001-08-21 2001-06-12 2001-11-15 VU#655259 OpenSSH allows arbitrary file deletion via symlink redirection of temporary file
2001-09-27 2001-09-14 2001-09-27 VU#914859 Microsoft Windows Index Server discloses sensitive configuration information via crafted request to SQLQHit.asp sample application
2007-01-24 2007-01-24 2007-01-31 VU#341288 Cisco IOS fails to properly process certain packets containing a crafted IP option

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis