search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-01-03 2007-12-28 2008-01-23 VU#553235 Jetty fails to properly process URLs that contain double / characters
2007-12-21 2007-12-20 2009-04-13 VU#963889 IBM Lotus Domino Web Access ActiveX control stack buffer overflows
2007-12-19 2007-12-19 2008-01-15 VU#758769 Adobe Flash Player asfunction protocol may enable cross-site scripting
2008-03-25 2007-12-19 2008-03-25 VU#935737 Adobe Flash Player may load arbitrary, malformed cross-domain policy files
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2007-12-14 2007-12-14 2008-01-10 VU#205073 Gesytec Easylon OPC Server fails to properly validate OPC server handles
2008-05-01 2007-12-12 2009-06-09 VU#929656 BGP implementations do not properly handle UPDATE messages
2007-12-17 2007-12-11 2007-12-19 VU#120593 Meridian Prolog Manager uses weak authentication to store and transmit user credentials
2007-12-11 2007-12-11 2007-12-11 VU#601073 Microsoft Windows Vista privilege escalation vulnerability
2008-04-21 2007-12-11 2008-04-21 VU#570089 Microsoft HeartbeatCtl ActiveX control buffer overflow
2007-12-12 2007-12-11 2007-12-12 VU#520465 Microsoft SMBv2 signing vulnerability
2007-12-14 2007-12-11 2007-12-14 VU#804089 Microsoft DirectX SAMI parsing buffer overflow
2007-12-14 2007-12-11 2007-12-14 VU#321233 Microsoft DirectX remote code execution
2007-12-12 2007-12-11 2007-12-13 VU#319385 Microsoft Windows Media Format Runtime ASF handling buffer overflow
2008-02-20 2007-12-10 2008-02-25 VU#438395 Samba "send_mailslot()" function buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis