CERT Vulnerability Notes Database

Published	Public	Updated	ID	Title
2007-12-21	2007-12-20	2009-04-13	VU#963889	IBM Lotus Domino Web Access ActiveX control stack buffer overflows
2007-12-19	2007-12-19	2008-01-15	VU#758769	Adobe Flash Player asfunction protocol may enable cross-site scripting
2007-12-18	2007-12-18	2008-01-07	VU#905292	Apple Safari code execution vulnerability
2007-12-17	2007-12-11	2007-12-19	VU#120593	Meridian Prolog Manager uses weak authentication to store and transmit user credentials
2007-12-14	2007-12-11	2007-12-14	VU#321233	Microsoft DirectX remote code execution
2007-12-14	2007-12-11	2007-12-14	VU#804089	Microsoft DirectX SAMI parsing buffer overflow
2007-12-14	2006-05-31	2007-12-14	VU#312692	Shadow Utils useradd utility sets incorrect file permissions
2007-12-14	2007-12-14	2008-01-10	VU#205073	Gesytec Easylon OPC Server fails to properly validate OPC server handles
2007-12-12	2007-12-11	2007-12-12	VU#520465	Microsoft SMBv2 signing vulnerability
2007-12-12	2007-12-11	2007-12-13	VU#319385	Microsoft Windows Media Format Runtime ASF handling buffer overflow
2007-12-11	2007-12-11	2007-12-11	VU#601073	Microsoft Windows Vista privilege escalation vulnerability
2007-12-10	2007-11-27	2008-01-18	VU#232881	Squid remote denial-of-service vulnerability
2007-12-04	2007-11-03	2007-12-04	VU#212984	Mortbay Jetty vulnerable to HTTP response splitting
2007-12-04	2007-11-05	2007-12-04	VU#438616	Mortbay Jetty fails to properly handle cookies with quotes
2007-12-04	2007-11-05	2007-12-04	VU#237888	Mortbay Jetty Dump Servlet vulnerable to cross-site scripting

Software Engineering Institute