search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-06-26 2007-06-26 2007-08-14 VU#554257 MIT Kerberos kadmind principal renaming stack buffer overflow
2008-03-22 2007-11-16 2008-05-13 VU#936529 Microsoft Jet Engine stack buffer overflow
2001-10-25 2001-10-18 2003-04-09 VU#649979 Oracle9iAS Web Cache vulnerable to buffer overflow
2008-02-12 2008-02-09 2008-05-09 VU#140129 Adobe Reader EScript.api arbitrary code execution
2001-07-27 2001-06-27 2001-10-31 VU#971179 UUCP package contains multiple buffer overflows via long string of characters sent as command line argument
2009-12-15 2009-12-14 2010-06-18 VU#508357 Adobe Acrobat and Reader contain a use-after-free vulnerability in the JavaScript Doc.media.newPlayer method
2008-04-18 2008-04-16 2008-04-18 VU#705529 Apple Safari WebKit fails to properly handle a crafted URL
2003-04-16 2003-04-15 2003-05-20 VU#139129 Heap overflow in Snort "stream4" preprocessor
2007-05-29 2007-05-29 2007-05-30 VU#603529 Zenturi ProgramChecker ActiveX buffer overflow vulnerabilities
2007-04-21 2007-04-17 2007-04-21 VU#324929 McAfee VirusScan Enterprise heap buffer overflow vulnerability
2007-07-09 2007-07-05 2007-07-16 VU#305657 SAP Message Server heap buffer overflow
2006-12-08 2006-12-07 2007-01-10 VU#925529 Madwifi wireless driver buffer overflow vulnerability
2006-04-20 2006-04-18 2006-05-03 VU#940729 Oracle Diagnostics Interfaces vulnerability
2005-06-08 2005-05-10 2006-02-22 VU#983429 Apple Mac OSX executes arbitrary widget with same "bundle identifier" as system widget
2006-08-16 2006-03-20 2009-11-20 VU#837857 X.Org server fails to properly test for effective user ID

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis