search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2008-01-09 2008-01-09 2008-01-31 VU#568681 AOL Radio AOLMediaPlaybackControl.exe stack buffer overflow
2008-01-31 2008-01-10 2008-01-31 VU#767825 Liferay Portal fails to protect against CSRF
2008-01-31 2008-01-10 2008-01-31 VU#217825 Liferay Portal Admin portlet Shutdown message XSS
2008-01-31 2008-01-10 2008-01-31 VU#732449 Liferay Portal User Profile Greeting stored XSS
2008-01-31 2008-01-10 2008-01-31 VU#888209 Liferay Portal Forgot Password User-Agent HTTP header XSS
2008-01-31 2008-01-10 2008-01-31 VU#326065 Liferay Portal Enterprise Admin User-Agent HTTP header XSS
2007-02-19 2007-02-19 2008-01-30 VU#196240 Sourcefire Snort DCE/RPC preprocessor does not properly reassemble fragmented packets
2008-01-30 2008-01-30 2008-01-30 VU#639169 SwiftView ActiveX control and plug-in stack buffer overflow
2008-01-10 2008-01-08 2008-01-29 VU#115083 Microsoft Windows IGMPv3 and MLDv2 processing vulnerability
2008-01-25 2008-01-24 2008-01-25 VU#308556 GE Fanuc CIMPLICITY HMI heap buffer overflow
2007-01-24 2007-01-24 2008-01-25 VU#274760 Cisco IOS fails to properly process specially crafted IPv6 packets
2008-01-03 2007-12-28 2008-01-23 VU#553235 Jetty fails to properly process URLs that contain double / characters
2008-01-22 2008-01-17 2008-01-23 VU#412228 Citrix Presentation Server heap based buffer overflow
2007-12-10 2007-11-27 2008-01-18 VU#232881 Squid remote denial-of-service vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis