search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-11-11 2005-11-07 2006-05-09 VU#146284 0 Macromedia Flash Player fails to properly validate the frame type identifier read from a "SWF" file
2001-07-18 2001-07-20 2006-05-09 VU#814187 Symantec LiveUpdate stores proxy server passwords in plaintext in registry
2002-07-26 2002-07-24 2006-05-08 VU#484891 Microsoft SQL Server 2000 contains stack buffer overflow in SQL Server Resolution Service
2006-04-19 2006-04-19 2006-05-05 VU#621566 Linksys RT31P2 VoIP router denial of service vulnerabilities
2006-05-04 2006-04-26 2006-05-04 VU#477604 Juniper Networks IVE client ActiveX control buffer overflow
2006-02-09 2006-02-07 2006-05-03 VU#759996 Sun Java Reflection API security bypass vulnerabilities
2006-04-19 2006-04-18 2006-05-03 VU#443265 Oracle Reporting Framework vulnerability
2006-04-20 2006-04-18 2006-05-03 VU#940729 Oracle Diagnostics Interfaces vulnerability
2006-04-20 2006-04-18 2006-05-03 VU#452681 Oracle Export component SQL injection vulnerability
2006-04-03 1999-04-19 2006-05-02 VU#808921 eBay contains a cross-site scripting vulnerability
2006-05-01 2006-04-21 2006-05-01 VU#118388 Symantec Scan Engine fails to properly perform authentication
2005-01-26 2005-01-26 2006-05-01 VU#409555 Juniper JunOS Routing Engine MPLS denial of service
2004-04-20 2003-12-22 2006-05-01 VU#415294 The Border Gateway Protocol relies on persistent TCP sessions without specifying authentication requirements
2005-01-14 2004-12-15 2006-05-01 VU#907729 Veritas Backup Exec registration request buffer overflow
2003-12-09 2003-10-03 2006-05-01 VU#325603 0 Integer overflow vulnerability in rsync

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis