search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-06-13 2007-06-12 2007-06-21 VU#682825 Microsoft Windows "MHTML" protocol handler fails to properly interpret HTTP header
2002-06-13 2002-05-27 2002-06-25 VU#855811 Microsoft Remote Access Service API contains additional buffer overflow vulnerability via phonebook entries
2002-12-09 2002-12-06 2002-12-09 VU#961489 University of Washington IMAP Server vulnerable to buffer overflow after login
2002-08-12 2002-08-14 2004-02-09 VU#287771 Multiple vendors' Internet Key Exchange (IKE) implementations do not properly handle IKE response packets
2007-03-15 2007-03-12 2007-05-03 VU#986425 OpenBSD IPv6 kernel buffer overflow vulnerability
2003-09-30 2003-09-30 2003-10-01 VU#686224 OpenSSL does not securely handle invalid public key when configured to ignore errors
2006-11-28 2006-11-09 2006-12-01 VU#352825 GNU gv buffer overflow vulnerability
2008-01-31 2008-01-10 2008-01-31 VU#217825 Liferay Portal Admin portlet Shutdown message XSS
2005-02-21 2005-01-25 2005-02-21 VU#972598 SCO OpenServer vulnerable to privilege escalation in 'scosession' argument handling
2005-02-08 2005-02-08 2005-02-08 VU#597889 Microsoft COM Structured Storage Vulnerability
2004-12-10 2004-12-06 2004-12-10 VU#136424 Remote Execute vulnerable to denial-of-service
2007-04-05 2007-03-30 2007-04-05 VU#478225 AOL SuperBuddy ActiveX fails to properly validate method arguments
2005-06-24 2005-06-22 2005-07-22 VU#352625 VERITAS Backup Exec Server Service contains a buffer overflow vulnerability
2001-04-06 2001-01-16 2001-08-30 VU#137024 Compaq web-enabled management software contains buffer overflow in authentication username
2006-09-27 2006-07-18 2006-10-10 VU#753044 Microsoft Windows WebViewFolderIcon ActiveX integer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis