search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-11-07 2006-10-16 2006-11-07 VU#180864 Clam AntiVirus fails to properly handle crafted Portable Executable (PE) files
2006-11-07 2006-10-14 2006-11-07 VU#366020 Apache mod_tcl module contains a format string error
2006-10-11 2006-10-10 2006-11-06 VU#176556 Microsoft Office fails to properly parse malformed records
2006-04-11 2006-04-11 2006-11-02 VU#234812 RDS.Dataspace ActiveX control bypasses ActiveX security model
2006-09-22 2006-09-21 2006-11-01 VU#867796 Apple AirPort wireless vulnerable to buffer overflow
2006-09-22 2006-09-21 2006-11-01 VU#563492 Apple AirPort wireless drivers vulnerable to integer overflow
2006-10-11 2006-10-10 2006-10-31 VU#547212 Microsoft XML Core Services XMLHTTP ActiveX control fails to properly interpret certain HTTP operations
2006-10-12 2006-10-10 2006-10-31 VU#562788 Microsoft XML Core Services contain a buffer overflow in the XSLT component
2006-10-26 2006-10-03 2006-10-26 VU#796956 Novell GroupWise Messenger fails to properly handle HTTP POST requests.
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing
2006-10-25 2006-08-29 2006-10-25 VU#300368 X.Org fails to check for setuid failure on Linux systems
2006-10-25 2006-08-25 2006-10-25 VU#696896 Wireshark SSCOP dissector fails to properly handle malformed packets
2006-10-25 2006-08-24 2006-10-25 VU#638376 Wireshark contains multiple off-by-one errors in the IPSec ESP preference parser
2006-10-12 2006-08-25 2006-10-25 VU#335656 Wireshark contains an unspecified vulnerability in the DHCP dissector
2006-10-24 2006-10-17 2006-10-24 VU#318764 Oracle DISABLE_HIERARCHY_INTERNAL procedure vulnerable to PL/SQL injection

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis