search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-03-21 2002-08-01 2003-04-15 VU#671627 HP Tru64 UNIX "dxchpwd" contains buffer overflow
2006-09-15 2006-09-13 2006-11-14 VU#377369 Microsoft DirectAnimation Path ActiveX control fails to validate input
2003-10-30 2001-08-29 2003-10-30 VU#315227 KaZaA Media Desktop discloses username to remote users
2002-09-12 2002-05-09 2002-09-12 VU#416427 HP Tru64 UNIX "deliver" contains buffer overflow (SSRT2275)
2005-05-16 2005-05-03 2005-05-17 VU#354486 Apple Mac OS X Server NetInfo Setup Tool fails to validate command line parameters
2003-02-21 2003-02-17 2003-03-26 VU#355169 Lotus Domino Web Server vulnerable to denial of service via incomplete POST request
2007-04-20 2007-04-19 2007-04-20 VU#474969 Apple Macintosh OS X fails to properly mount WebDAV filesystems
2004-11-03 2004-11-03 2004-11-03 VU#306086 MailPost vulnerable file system information disclosure via HTTP GET request
2006-10-02 2006-09-29 2006-11-21 VU#546772 Apple Mac OS X JPEG2000 image handling buffer overflow
2007-01-04 2006-11-29 2007-01-04 VU#210969 Citrix ICA Client ActiveX control buffer overflow
2004-05-06 2004-01-26 2004-05-06 VU#444158 Gaim contains a buffer overflow vulnerability in the http_canread() function
2004-09-01 2004-08-10 2004-09-01 VU#316206 Oracle Database Server contains several vulnerabilities
2004-02-27 2004-02-06 2004-02-27 VU#399806 Oracle9i Database contains buffer overflow in FROM_TZ() function
2007-06-08 2007-06-07 2007-06-11 VU#949817 Yahoo! Webcam image upload ActiveX control vulnerable to arbitrary code execution
2007-02-16 2007-02-14 2007-02-22 VU#430969 Cisco Firewall Services Module vulnerable to DoS via inspection of malformed SIP messages

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis