search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-03-25 2007-12-19 2008-03-25 VU#935737 Adobe Flash Player may load arbitrary, malformed cross-domain policy files
2008-03-22 2007-11-16 2008-05-13 VU#936529 Microsoft Jet Engine stack buffer overflow
2008-03-21 2008-03-18 2008-04-01 VU#446403 AirSpan Base Station Distribution Unit default root password
2008-03-20 2007-07-12 2008-03-20 VU#970849 libarchive does not properly terminate loop
2008-03-20 2008-03-20 2009-04-14 VU#889747 Microsoft Windows fails to properly handle the NoDriveTypeAutoRun registry value
2008-03-19 2008-03-18 2008-03-19 VU#766019 Apple Safari vulnerable to xss via the processing of JavaScript URLs
2008-03-19 2008-01-17 2008-03-19 VU#203220 X.Org PCF font parser buffer overflow
2008-03-19 2008-03-18 2011-07-22 VU#895609 MIT Kerberos krb4-enabled KDC contains multiple vulnerabilities
2008-03-18 2008-03-18 2011-07-22 VU#374121 MIT Kerberos contains array overrun in RPC library used by kadmind
2008-03-18 2008-03-18 2008-03-18 VU#992585 Check Point VPN-1 information disclosure vulnerability
2008-03-18 2008-03-18 2008-04-28 VU#329673 BusinessObjects RptViewerAX ActiveX control stack buffer overflow
2008-03-15 2008-02-01 2008-03-17 VU#721460 UltraVNC buffer overflow vulnerability
2008-03-12 2008-03-11 2008-03-13 VU#654577 Microsoft Office Web Components Spreadsheet ActiveX control URL parsing stack buffer overflow
2008-03-12 2008-03-11 2009-04-13 VU#362849 Adobe Form Designer and Advanced Form Client ActiveX controls contain multiple buffer overflows
2008-03-11 2008-03-11 2008-04-01 VU#393305 Microsoft Office mailto URI remote code execution

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis