search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-08-20 2002-04-22 2002-08-20 VU#809347 FreeBSD privilege elevation vulnerability
2001-12-21 2001-12-20 2002-01-09 VU#700575 Buffer overflows in Microsoft SQL Server 7.0 and SQL Server 2000
2002-07-26 2002-07-24 2003-02-05 VU#399260 Microsoft SQL Server 2000 contains heap buffer overflow in SQL Server Resolution Service
2002-02-09 2001-07-18 2002-02-09 VU#116875 Adobe PhotoDeluxe does not adequately restrict Java execution
2001-12-04 2001-12-04 2002-01-02 VU#157447 OpenSSH UseLogin directive permits privilege escalation
2010-08-05 2010-08-02 2010-09-14 VU#275247 FreeType 2 CFF font stack corruption vulnerability
2001-09-18 2001-06-07 2001-09-18 VU#405075 Microsoft Windows 2000 Telnet Service fails to reject oversized username input values
2002-09-24 2001-12-13 2002-09-24 VU#413875 EFTP does not adequately validate user input thereby allowing directory traversal
2007-10-01 2007-09-25 2008-02-12 VU#571584 Google Gmail cross-site request forgery vulnerability
2006-02-13 2006-02-06 2006-02-14 VU#124460 Microsoft HTML Help Workshop buffer overflow
2001-10-29 2001-10-25 2001-10-29 VU#825275 NSI RWhoisd contains format string vulnerability in print_error()
2001-07-27 2001-06-13 2001-09-17 VU#451275 Curses library vulnerable to buffer overflow
2008-05-29 2008-05-28 2008-05-29 VU#566875 Apple Help Viewer vulnerable to buffer overflow
2004-09-17 2004-09-14 2004-09-17 VU#651928 Mozilla may allow violation of cross-domain scripting policies via dragging
2004-04-14 2004-04-13 2004-04-14 VU#753212 Microsoft LSA Service contains buffer overflow in DsRolepInitializeLog() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis