search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-07-31 2003-07-31 2003-08-11 VU#579324 Cisco IOS HTTP Server vulnerable to buffer overflow when processing overly large malformed HTTP GET request
2006-04-20 2006-04-18 2006-04-20 VU#139049 Oracle DBMS_REPUTIL package vulnerable to SQL injection
2002-09-24 2001-10-22 2002-09-24 VU#222739 Handspring VisorPhone vulnerable to DoS via SMS image transfer
2004-07-14 2004-07-13 2004-07-14 VU#106324 Microsoft Windows contains a vulnerability in the way the Windows Shell launches applications
2006-05-03 2006-04-26 2006-07-25 VU#932124 Oracle DBMS_EXPORT_EXTENSION package vulnerable to SQL injection
2007-05-14 2007-05-14 2009-04-22 VU#739224 HTTP content scanning systems full-width/half-width Unicode encoding bypass
2000-09-26 2000-03-01 2004-04-12 VU#25249 HHControl Object (showHelp) may execute shortcuts embedded in help files
2011-01-05 2011-01-04 2011-02-08 VU#106516 Microsoft Windows graphics engine thumbnail stack buffer overflow
2004-12-01 2004-10-14 2005-01-25 VU#687568 LibTIFF contains multiple integer overflows
2006-10-24 2006-10-17 2006-10-24 VU#736324 Oracle SYS.DBMS_CDC_IMPDP package vulnerable to PL/SQL injection
2004-12-13 2004-11-29 2005-03-17 VU#305294 Shortcuts may insecurely store SMB authentication information
2009-09-09 2009-09-07 2009-09-11 VU#336053 Cyrus IMAPd buffer overflow vulnerability
2005-07-13 2005-07-13 2005-07-14 VU#170394 WebEOC account lock-out policy may allow a denial-of-service
2000-10-06 2000-08-24 2000-11-29 VU#747124 ADK flaw in recent versions of PGP
2005-03-29 2005-03-28 2005-12-22 VU#291924 Multiple Telnet clients fail to properly handle the "LINEMODE" SLC suboption

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis