search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2011-08-26 2011-08-24 2011-09-19 VU#405811 Apache HTTPD 1.3/2.x Range header DoS vulnerability
2007-07-23 2007-06-20 2007-07-24 VU#200928 VLC Media Player format string vulnerability
2001-08-27 2001-07-02 2001-08-27 VU#270083 IBM VisualAge Professional vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-01-29 2001-01-29 2002-05-01 VU#572183 ISC BIND 4 contains buffer overflow in nslookupComplain()
2008-09-17 2008-09-12 2008-09-17 VU#538011 LANDesk QIP service buffer overflow vulnerability
2001-11-21 2001-11-20 2001-12-06 VU#638011 HP-UX Line Printer Daemon Vulnerable to Directory Traversal
2002-09-24 2001-03-02 2003-11-05 VU#739211 PHP-Nuke does not adequately authenticate users thereby allowing attackers to change user information
2006-07-27 2006-07-25 2007-02-09 VU#670060 Mozilla fails to properly release JavaScript references
2001-11-28 2001-11-28 2004-03-30 VU#362483 Cisco IOS Firewall Feature Set fails to check IP protocol type thereby allowing packets to bypass dynamic access control lists
2004-04-14 2004-04-13 2004-04-14 VU#547028 Microsoft Windows contains buffer overflow in processing of WMF and EMF image formats
2007-11-15 2007-11-05 2007-11-15 VU#445083 Apple QuickTime heap buffer overflow vulnerability
2002-11-13 2002-11-11 2004-10-18 VU#852283 Cached malformed SIG record buffer overflow
2005-04-13 2005-03-05 2005-04-13 VU#396645 Microsoft Windows vulnerable to DoS via LAND attack
2007-03-06 2007-03-06 2007-03-09 VU#448745 Apple QuickTime PICT heap buffer overflow
2002-03-04 2001-11-29 2002-04-16 VU#936683 Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis