search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-02-13 2008-01-31 2008-02-13 VU#794236 SkypeFind fails to properly sanitize user-supplied input
2008-02-05 2008-02-02 2008-02-13 VU#101676 Yahoo! Music Jukebox YMP Datagrid ActiveX control stack buffer overflows
2008-02-05 2008-02-03 2008-02-13 VU#340860 Yahoo! Music Jukebox Yahoo! MediaGrid ActiveX control stack buffer overflow
2008-02-12 2008-02-12 2008-02-12 VU#692417 Microsoft Word code execution vulnerability
2008-02-12 2008-02-12 2008-02-12 VU#774345 Apple Mac OS X fails to properly handle a crafted URL
2007-10-01 2007-09-25 2008-02-12 VU#571584 Google Gmail cross-site request forgery vulnerability
2008-02-11 2008-02-07 2008-02-11 VU#879056 Mozilla browsers fail to properly handle images
2008-02-11 2008-02-07 2008-02-11 VU#309608 Mozilla products may allow directory traversal
2008-01-10 2008-01-10 2008-02-07 VU#112179 Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2008-01-09 2008-01-09 2008-01-31 VU#568681 AOL Radio AOLMediaPlaybackControl.exe stack buffer overflow
2008-01-31 2008-01-10 2008-01-31 VU#767825 Liferay Portal fails to protect against CSRF
2008-01-31 2008-01-10 2008-01-31 VU#217825 Liferay Portal Admin portlet Shutdown message XSS
2008-01-31 2008-01-10 2008-01-31 VU#732449 Liferay Portal User Profile Greeting stored XSS
2008-01-31 2008-01-10 2008-01-31 VU#888209 Liferay Portal Forgot Password User-Agent HTTP header XSS

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis