search menu icon-carat-right cmu-wordmark
Carnegie Mellon University
Please be aware that VINCE will be down for maintenance from 12 noon EST until 4 PM EST on November 19, 2025.

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-12-05 2008-01-03 2008-12-05 VU#639345 Linksys WVC54GC NetCamPlayerWeb11gv2 ActiveX control stack buffer overflow
2008-12-05 2008-01-03 2008-12-05 VU#528993 Linksys WVC54GC wireless video camera vulnerable to information disclosure
2008-01-03 2007-12-28 2008-01-23 VU#553235 Jetty fails to properly process URLs that contain double / characters
2007-12-21 2007-12-20 2009-04-13 VU#963889 IBM Lotus Domino Web Access ActiveX control stack buffer overflows
2008-03-25 2007-12-19 2008-03-25 VU#935737 Adobe Flash Player may load arbitrary, malformed cross-domain policy files
2007-12-19 2007-12-19 2008-01-15 VU#758769 Adobe Flash Player asfunction protocol may enable cross-site scripting
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2007-12-14 2007-12-14 2008-01-10 VU#205073 Gesytec Easylon OPC Server fails to properly validate OPC server handles
2008-05-01 2007-12-12 2009-06-09 VU#929656 BGP implementations do not properly handle UPDATE messages
2007-12-11 2007-12-11 2007-12-11 VU#601073 Microsoft Windows Vista privilege escalation vulnerability
2007-12-14 2007-12-11 2007-12-14 VU#804089 Microsoft DirectX SAMI parsing buffer overflow
2007-12-17 2007-12-11 2007-12-19 VU#120593 Meridian Prolog Manager uses weak authentication to store and transmit user credentials
2008-04-21 2007-12-11 2008-04-21 VU#570089 Microsoft HeartbeatCtl ActiveX control buffer overflow
2007-12-12 2007-12-11 2007-12-12 VU#520465 Microsoft SMBv2 signing vulnerability
2007-12-14 2007-12-11 2007-12-14 VU#321233 Microsoft DirectX remote code execution

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis