search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-02-13 2006-02-06 2006-02-14 VU#124460 Microsoft HTML Help Workshop buffer overflow
2006-02-07 2006-02-02 2006-02-09 VU#759273 Mozilla QueryInterface memory corruption vulnerability
2006-02-03 2006-02-02 2006-02-08 VU#592425 Mozilla-based products fail to validate user input to the attribute name in "XULDocument.persist"
2005-11-08 2005-11-08 2006-02-08 VU#300549 Microsoft Windows Graphics Rendering Engine buffer overflow vulnerability
2005-10-14 2005-10-11 2006-02-06 VU#898241 Microsoft BlnMgr Proxy (blnmgrps.dll) COM object fails to implement required methods
2001-01-28 1999-11-10 2006-02-03 VU#16532 BIND T_NXT record processing may cause buffer overflow
2004-04-30 2000-11-01 2006-02-03 VU#540517 libgcc contains multiple flaws that allow integer type range vulnerabilities to occur at runtime
2006-01-26 2006-01-26 2006-01-31 VU#998297 Microsoft Internet Explorer does not honor ActiveX kill bit
2006-01-11 2006-01-10 2006-01-31 VU#913449 Apple QuickTime fails to properly handle corrupt GIF images
2006-01-16 2006-01-16 2006-01-31 VU#715730 AOL You've Got Pictures ActiveX control buffer overflow
2006-01-25 2006-01-17 2006-01-27 VU#891644 Oracle Database XML Database SQL Injection vulnerability
2006-01-25 2006-01-17 2006-01-25 VU#870172 Oracle Database Net Listener vulnerability
2006-01-24 2006-01-17 2006-01-24 VU#629316 Oracle Database SYS.DBMS_METADATA_UTIL package SQL injection vulnerability
2006-01-20 2006-01-17 2006-01-24 VU#871756 Oracle TNS protocol fails to properly validate authentication requests
2005-12-28 2005-12-27 2006-01-20 VU#181038 Microsoft Windows Metafile handler SETABORTPROC GDI Escape vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis