search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-08-05 2003-07-31 2003-08-05 VU#999788 BEA WebLogic Server code execution paths may cause the current user to be incorrect
2007-03-06 2007-03-06 2007-03-19 VU#861817 Apple QuickTime UDTA atom integer overflow
2011-02-16 2011-02-14 2011-04-15 VU#323172 Microsoft Windows browser election message kernel pool overflow
2005-12-21 2005-12-20 2005-12-30 VU#305272 Symantec RAR decompression library contains multiple heap overflows
2001-09-27 2001-01-10 2001-09-27 VU#964488 ISC inn creates temporary files insecurely
2007-04-18 2007-04-16 2007-09-12 VU#378688 Google Reader cross-site request forgery vulnerability
2001-07-24 2001-07-18 2002-04-16 VU#745371 Multiple vendor telnet daemons vulnerable to buffer overflow via crafted protocol options
2006-12-05 2006-12-04 2006-12-05 VU#914617 Microsoft Windows Print Spooler service fails to properly handle RPC requests
2010-12-22 2010-12-21 2010-12-23 VU#842372 Microsoft IIS FTP server memory corruption vulnerability
2002-10-11 2002-06-12 2003-08-05 VU#879386 Multiple buffer overflow vulnerabilities in QNX
2003-04-04 2003-04-04 2003-06-27 VU#720017 Entrust Authority Security Manager (EASM) does not enforce multiple authorization requirement for master user password change
2003-03-20 2003-03-15 2003-05-09 VU#623217 Cryptographic weakness in Kerberos Version 4 protocol
2001-12-13 1998-03-01 2001-12-18 VU#228186 Hot Standby Router Protocol (HSRP) uses weak authentication
2002-08-09 2002-04-03 2002-12-10 VU#128491 Macromedia Flash Player continues to download flash files until browser is closed
2003-12-29 2003-11-27 2003-12-29 VU#940388 GnuPG creates ElGamal keys for signing using insufficient entropy

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis