search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-10-12 2010-10-12 2011-01-19 VU#924300 Oracle WebLogic Node Manager allows arbitrary configuration via UNC path
2011-01-12 2011-01-09 2011-01-18 VU#180119 WellinTech KingView 6.53 remote heap overflow vulnerability
2011-01-13 2011-01-13 2011-01-13 VU#782567 Objectivity/DB administration tools lack authentication
2011-01-13 2011-01-13 2011-01-13 VU#680540 ICQ 7 fails to verify the origin of software updates
2011-01-12 2011-01-04 2011-01-12 VU#506864 InduSoft NTWebServer web service stack-based buffer overflow
2011-01-11 2010-12-21 2011-01-12 VU#979776 Ecava IntegraXor web service allows directory traversal outside of web root
2011-01-06 2011-01-01 2011-01-10 VU#427980 Microsoft Internet Explorer 8 use-after-free vulnerability
2011-01-07 2011-01-07 2011-01-07 VU#870601 PolyVision RoomWizard insecurely stores Sync Connector Active Directory credentials and uses default administrative password
2010-11-30 2010-08-18 2011-01-03 VU#870532 AWStats fails to properly handle "\\" when specifying a configuration file directory
2010-12-22 2010-12-21 2010-12-23 VU#842372 Microsoft IIS FTP server memory corruption vulnerability
2010-12-22 2010-12-22 2010-12-22 VU#725596 Microsoft WMI Administrative Tools WBEMSingleView.ocx ActiveX control vulnerability
2010-12-17 2010-12-16 2010-12-21 VU#603928 Ecava IntegraXor stack-based buffer overflow vulnerability
2010-12-01 2010-12-01 2010-12-16 VU#706148 ISC BIND cache vulnerability
2010-12-15 2010-12-08 2010-12-16 VU#647928 Invensys Wonderware InBatch and Foxboro I/A Series Batch database lock manager service (lm_tcp) buffer overflow vulnerability
2010-12-13 2010-12-13 2010-12-13 VU#159528 ISC DHCP server vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis