search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-04-17 2006-04-13 2006-04-17 VU#736934 Mozilla products vulnerable to memory corruption via a particular sequence of HTML tags
2011-09-26 2011-09-26 2011-10-06 VU#668534 Multiple Quagga remote component vulnerabilities
2001-10-18 2001-07-25 2001-10-22 VU#847803 Php variables passed from the browser are stored in global context
2002-07-30 2002-07-30 2002-09-30 VU#561275 OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process
2006-02-09 2006-02-07 2006-05-03 VU#759996 Sun Java Reflection API security bypass vulnerabilities
2004-10-22 2004-08-25 2004-10-25 VU#981134 Linux kernel USB drivers do not initialize kernel memory properly
2003-03-20 2003-03-15 2003-05-09 VU#442569 MIT Kerberos vulnerable to ticket splicing when using Kerberos4 triple DES service tickets
2006-06-02 2006-06-01 2007-02-09 VU#575969 Mozilla may process content-defined setters on object prototypes with elevated privileges
2002-06-12 2002-06-04 2002-06-12 VU#440275 Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
2004-02-23 2004-02-17 2004-03-19 VU#972334 IMail Server LDAP daemon buffer overflow
2001-09-26 1998-07-06 2001-09-26 VU#182777 IBM AIX nslookup buffer overflow in lex routines
2004-09-17 2004-08-31 2004-09-17 VU#460528 Mozilla fails to properly handle script-generated events
2005-08-31 2005-08-25 2005-09-16 VU#902110 Reflection for Secure IT Windows Server can allow login to renamed built-in accounts
2008-02-13 2008-02-12 2008-02-13 VU#228569 Microsoft Internet Explorer property memory corruption vulnerability
2002-12-09 2002-12-06 2002-12-09 VU#961489 University of Washington IMAP Server vulnerable to buffer overflow after login

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis