CERT Vulnerability Notes Database

Published	Public	Updated	ID	Title
2007-12-17	2007-12-11	2007-12-19	VU#120593	Meridian Prolog Manager uses weak authentication to store and transmit user credentials
2008-04-21	2007-12-11	2008-04-21	VU#570089	Microsoft HeartbeatCtl ActiveX control buffer overflow
2007-12-12	2007-12-11	2007-12-12	VU#520465	Microsoft SMBv2 signing vulnerability
2007-12-14	2007-12-11	2007-12-14	VU#321233	Microsoft DirectX remote code execution
2007-12-12	2007-12-11	2007-12-13	VU#319385	Microsoft Windows Media Format Runtime ASF handling buffer overflow
2008-01-25	2007-12-10	2008-04-28	VU#203611	inet_network() off-by-one buffer overflow
2008-02-20	2007-12-10	2008-02-25	VU#438395	Samba "send_mailslot()" function buffer overflow
2008-06-25	2007-12-05	2008-06-25	VU#305208	Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
2008-01-03	2007-11-30	2008-01-03	VU#150249	OpenSSL FIPS Object Module fails to properly generate random seeds
2007-12-10	2007-11-27	2008-01-18	VU#232881	Squid remote denial-of-service vulnerability
2007-11-27	2007-11-25	2007-11-27	VU#433819	Apple Mail remote command execution vulnerability
2007-11-24	2007-11-23	2008-01-11	VU#659761	Apple QuickTime RTSP Content-Type header stack buffer overflow
2008-02-04	2007-11-22	2008-08-13	VU#776931	Aurigma ImageUploader ActiveX control stack buffer overflows
2008-06-11	2007-11-21	2008-06-11	VU#315107	SkyPortal contains multiple SQL injection vulnerabilities
2007-11-20	2007-11-20	2007-11-20	VU#512193	IBM Director fails to properly time-out connection requests from clients

Software Engineering Institute