search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-09-14 2010-09-14 2010-10-29 VU#491991 Adobe Reader and Acrobat Font Parsing Buffer Overflow Vulnerability
2001-06-01 2001-02-20 2001-08-30 VU#112912 Hewlett-Packard MPE/iX linkeditor permits privilege escalation
2005-12-02 2005-11-28 2006-01-13 VU#974188 Sun Java Runtime Environment "reflection" API privilege elevation vulnerabilities
2001-09-27 2001-01-30 2001-09-27 VU#115112 Sun Solaris catman creates temporary files insecurely
2002-03-29 2002-03-29 2002-03-29 VU#585123 Microsoft Internet Explorer does not adequately evaluate malformed URLs
2006-09-19 2006-06-19 2011-07-22 VU#933712 gzip NULL dereference in huft_build()
2004-03-24 2004-03-22 2004-04-05 VU#695486 Ethereal fails to properly handle malformed color filter files
2002-01-31 2001-08-14 2002-01-31 VU#726891 Novell Groupwise contains protocol implementation vulnerability allowing email to be viewed by unauthorized user
2007-08-09 2007-08-08 2007-08-10 VU#201984 Cisco IOS fails to properly handle Next Hop Resolution Protocol packets
2000-10-31 1999-09-10 2000-10-31 VU#23412 Wang/Kodak Image Annotation ActiveX Control
2001-07-12 2001-04-11 2001-07-17 VU#601312 Lotus Domino vulnerable to DoS via crafted HTTP header requests
2001-09-18 2001-03-01 2001-09-18 VU#796584 Microsoft Windows 2000 Internet Information Server (IIS) and Exchange 2000 vulnerable to DoS via malformed URL (MS01-014)
2004-04-14 2004-04-13 2004-04-14 VU#526084 Microsoft Windows Utility Manager contains vulnerability in the way it launches applications
2005-09-02 2005-08-30 2005-09-02 VU#619812 UMN Gopher vulnerable to buffer overflow via overly long "+VIEWS:"
2004-04-14 2004-04-13 2004-04-14 VU#753212 Microsoft LSA Service contains buffer overflow in DsRolepInitializeLog() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis