search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-03-30 2005-03-23 2005-12-22 VU#557948 Mozilla products vulnerable to heap overflow via specially crafted GIF file
2005-03-18 2005-03-18 2005-03-21 VU#361180 McAfee Scan Engine vulnerable to buffer overflow in LHA decoder
2005-11-08 2005-03-18 2005-11-09 VU#134756 Microsoft Windows buffer overflow in Enhanced Metafile rendering API
2005-03-17 2005-03-17 2005-04-20 VU#770532 NotifyLink administrative interface displays user passwords in clear text
2005-03-17 2005-03-17 2005-04-20 VU#264097 NotifyLink contains multiple SQL injection vulnerabilities
2005-03-17 2005-03-17 2005-04-28 VU#581068 NotifyLink server provides inadequate protection for cryptographic key material
2005-03-17 2005-03-17 2005-04-20 VU#131828 NotifyLink web client fails to adequately restrict access to administrative functions
2005-03-14 2005-03-14 2007-05-16 VU#204710 Apache Tomcat fails to properly handle certain requests
2006-08-10 2005-03-08 2006-08-15 VU#114956 Sun ONE and Sun Java System Applications vulnerable to cross-site scripting via default error page
2005-03-08 2005-03-07 2005-03-14 VU#108790 SafeNet Sentinel License Manager vulnerable to buffer overflow
2005-04-13 2005-03-05 2005-04-13 VU#396645 Microsoft Windows vulnerable to DoS via LAND attack
2005-08-19 2005-03-01 2007-10-11 VU#680526 Microsoft Internet Explorer can use any COM object
2005-02-28 2005-02-28 2005-02-28 VU#795812 Gaim vulnerable to DoS via specially crafted HTML
2006-09-20 2005-02-25 2008-07-21 VU#468798 SISCO OSI stack fails to properly validate packets
2005-06-08 2005-02-24 2005-06-08 VU#360296 Cisco ACNS may be vulnerable to DoS via malformed IP packets

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis