search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-10-25 2010-10-18 2010-10-26 VU#537223 GNU C library dynamic linker expands $ORIGIN in setuid library search path
2010-10-13 2010-10-13 2010-10-14 VU#989719 SAP BusinessObjects Axis2 Default Admin Password
2010-10-12 2010-10-12 2011-01-19 VU#924300 Oracle WebLogic Node Manager allows arbitrary configuration via UNC path
2022-04-28 2010-10-10 2022-04-29 VU#411271 Qt allows for privilege escalation due to hard-coding of qt_prfxpath value
2010-10-04 2010-10-04 2010-10-04 VU#236703 ActiveCollab permissions failure
2011-02-03 2010-10-01 2011-02-23 VU#114560 IntelliCom NetBiter NB100 and NB200 platforms contain multiple vulnerabilities
2010-09-30 2010-09-28 2010-09-30 VU#784855 Unexpected ACL Behavior in BIND 9.7.2
2011-02-03 2010-09-21 2011-02-03 VU#660688 SCADA Engine BACnet OPC Client buffer overflow vulnerability
2010-09-14 2010-09-14 2010-10-29 VU#491991 Adobe Reader and Acrobat Font Parsing Buffer Overflow Vulnerability
2010-09-14 2010-09-13 2010-09-21 VU#275289 Adobe Flash unspecified code execution vulnerability
2010-09-09 2010-09-07 2010-10-20 VU#807665 Washington Courts website vulnerable to SQL injection and cross-site scripting
2012-06-06 2010-09-02 2012-07-23 VU#458153 0 Video drivers may fail to support Address Space Layout Randomization (ASLR)
2010-08-24 2010-08-24 2010-08-24 VU#278785 DevonIT weak authentication and buffer overflow in /usr/bin/tm-console-bin
2010-08-24 2010-08-24 2010-12-06 VU#644319 Ghostscript Heap Corruption in TrueType bytecode interpreter
2010-11-30 2010-08-18 2011-01-03 VU#870532 AWStats fails to properly handle "\\" when specifying a configuration file directory

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis