search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-01-09 2006-12-20 2007-05-16 VU#102289 Sun Java JRE vulnerable to privilege escalation
2006-12-20 2006-12-19 2007-02-07 VU#928956 Mozilla SVG memory corruption vulnerability
2007-01-18 2006-12-19 2007-01-18 VU#722244 Mozilla products vulnerable to heap overflow via miscalculated size during conversion of an image
2007-01-18 2006-12-19 2007-02-02 VU#263412 Mozilla products vulnerable to privilege escalation via a JavaScript watch() function
2007-01-18 2006-12-19 2007-04-05 VU#447772 Mozilla JavaScript Engine multiple memory corruption vulnerabilities
2007-01-09 2006-12-19 2007-06-04 VU#427972 Mozilla denial of service vulnerability
2007-01-18 2006-12-19 2007-03-05 VU#405092 Mozilla products allows the src attribute in an img element to be changed to a JavaScript URI
2006-12-20 2006-12-19 2007-02-07 VU#606260 Mozilla Layout Engine vulnerability
2007-01-18 2006-12-19 2007-04-05 VU#428500 Mozilla LiveConnect vulnerable to crash finalizing JS objects
2006-12-20 2006-12-19 2007-01-31 VU#887332 Mozilla mail products vulnerable to heap buffer overflow via Content-Type headers
2006-12-18 2006-12-18 2007-01-03 VU#339004 NeoScale Systems CryptoStor 700 series appliances fail to properly perform two-factor authentication
2007-04-10 2006-12-15 2007-04-11 VU#740636 Microsoft Windows CSRSS error handling vulnerability
2006-12-15 2006-12-14 2007-01-12 VU#650432 Symantec Veritas NetBackup bpcd.exe CONNECT_OPTIONS buffer overflow
2006-12-15 2006-12-14 2007-01-12 VU#607312 Symantec Veritas NetBackup bpcd daemon buffer overflow
2006-12-15 2006-12-14 2007-01-12 VU#252936 Symantec Veritas NetBackup bpcd daemon fails to properly validate commands

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis