search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-01-10 2001-01-11 2001-01-10 VU#403307 Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
2002-08-26 2002-08-21 2002-08-26 VU#355707 Microsoft Office Web Components allows reading of local files via "LoadText" method by using URL redirection
2003-02-21 2003-02-21 2007-05-21 VU#528719 Multiple implementations of the Session Initiation Protocol (SIP) contain multiple types of vulnerabilities
2004-09-02 2004-08-31 2004-09-03 VU#866472 MIT Kerberos 5 ASN.1 decoding function krb5_rd_cred() insecurely deallocates memory (double-free)
2006-09-20 2006-09-12 2006-11-14 VU#168372 Adobe Flash Player allowScriptAccess protection bypass vulnerability
2001-10-03 2001-10-02 2004-03-24 VU#595507 Common Desktop Environment (CDE) ToolTalk RPC Server rpc.ttdbserverd contains format string vulnerability
2002-08-05 2002-07-16 2002-10-02 VU#212707 Multiple vendor implementations of file scanning utilities vulnerable to DoS via compressed file archive
2007-01-18 2006-12-19 2007-04-05 VU#447772 Mozilla JavaScript Engine multiple memory corruption vulnerabilities
2005-01-26 2005-01-26 2005-01-26 VU#689326 Cisco IOS vulnerable to DoS via malformed BGP packet
2011-10-10 2011-10-10 2011-10-10 VU#924307 D-Link DIR-685 Xtreme N storage router WPA/WPA2 encryption failure
2004-08-27 2004-03-30 2004-08-27 VU#492558 tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling
2002-03-28 2002-02-19 2002-07-29 VU#619707 Microsoft SQL Server contains buffer overflows in openrowset and opendatasource macros
2004-02-27 2004-02-06 2004-02-27 VU#240174 Oracle9i Database contains buffer overflow in TIME_ZONE session parameter
2004-12-17 2004-11-17 2004-12-17 VU#743974 Microsoft Internet Explorer execCommand() method SaveAs command uses misleading "Save HTML Document" dialog
2004-03-08 2004-01-28 2004-03-15 VU#902374 Apple Mac OS X TruBlueEnvironment vulnerable to buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis