search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-11-01 2006-11-01 2009-01-05 VU#854856 WMI Object Broker ActiveX Control bypasses ActiveX security model
2006-12-11 2006-11-01 2007-01-05 VU#778648 Cisco Security Agent Management Center vulnerable to authentication bypass
2007-02-08 2006-11-01 2007-02-09 VU#594904 Sun Network Security Services (NSS) vulnerable to DoS due to an unspecified vulnerability
2006-11-30 2006-11-01 2006-11-30 VU#191336 Apple AirPort driver fails to properly handle probe response frames
2007-01-02 2006-10-27 2007-01-02 VU#363992 Wireshark HTTP dissector vulnerability
2006-11-30 2006-10-27 2006-12-20 VU#723736 Wireshark contains an unspecified vulnerability in the XOT dissector
2006-10-27 2006-10-25 2006-12-08 VU#449092 AOL Nullsoft Winamp Lyrics3 heap buffer overflow
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing
2006-10-27 2006-10-24 2007-02-23 VU#589272 ADODB.Connection ActiveX control memory corruption vulnerability
2006-11-06 2006-10-19 2006-11-16 VU#245984 The Red Hat Enterprise Linux 3 SMP Kernel fails to properly handle IPC shared-memory
2006-10-20 2006-10-18 2006-10-20 VU#383092 IBM Lotus Notes sets insecure default permissions on program data
2006-10-24 2006-10-18 2007-01-19 VU#521252 Integer overflow vulnerability in Asterisk driver for Cisco SCCP-enabled phones
2006-10-24 2006-10-17 2006-10-24 VU#446100 Oracle CREATE_CHANGE_TABLE procedure vulnerable to PL/SQL injection
2006-10-24 2006-10-17 2006-10-24 VU#484380 Opera Web Browser fails to properly process overly long URLs
2006-10-24 2006-10-17 2006-10-24 VU#869292 Oracle MDSYS.SDO_LRS package vulnerable to PL/SQL injection

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis