search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-04-11 2006-03-16 2006-04-11 VU#984473 Microsoft Internet Explorer contains overflow in processing script action handlers
2001-10-16 2001-08-27 2001-11-09 VU#966075 HP-UX vulnerable to buffer overflow in line printer daemon (rlpdaemon) via crafted print request
2001-09-17 2001-08-03 2001-09-17 VU#314347 phpBB does not adequately validate user input thereby allowing user to gain escalated privileges via manipulated SQL query
2002-10-24 2001-04-20 2002-11-07 VU#887393 Microsoft Windows 2000 SNMP service leaks memory when querying printer objects if spooler service is stopped
2007-04-12 2007-04-08 2007-04-13 VU#914793 PhpWiki fails to properly restrict uploaded files
2002-05-22 2002-05-15 2002-05-30 VU#330275 Cisco Content Service Switch reboots when HTTPS POST request is sent to web management interface
2006-05-30 2006-05-30 2007-05-04 VU#487617 Secure Elements Class 5 AVR server fails to properly authenticate session start messages
2008-05-27 2008-05-27 2008-05-27 VU#656593 Online Media Technologies NCTSoft NCTAudioGrabber2 ActiveX stack buffer overflows
2010-07-15 2010-07-10 2010-09-09 VU#940193 Microsoft Windows automatically executes code specified in shortcut files
2003-04-29 2003-04-09 2003-05-01 VU#673993 PopTop PPTP Server contains buffer overflow in "ctrlpacket.c"
2001-08-15 2001-07-19 2001-08-17 VU#420475 Hewlett-Packard Virtual Vault OS (VVOS) contains vulnerability in mkacct program
2002-07-26 2002-03-12 2002-07-29 VU#627275 Microsoft SQL Server contains buffer overflow vulnerabilities in multiple extended stored procedures
2008-03-20 2008-03-20 2009-04-14 VU#889747 Microsoft Windows fails to properly handle the NoDriveTypeAutoRun registry value
2008-06-18 2008-06-17 2008-06-27 VU#858993 Deterministic Network Enhancer privilege escalation vulnerability
2000-12-14 2000-09-26 2001-01-17 VU#800893 Microsoft Internet Explorer vulnerable to file disclosure via code containing GetObject() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis