search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-11-19 2009-09-30 2010-11-19 VU#479051 OSIsoft PI Server provides an insecure authentication mechanism
2006-09-27 2006-07-18 2006-10-10 VU#753044 Microsoft Windows WebViewFolderIcon ActiveX integer overflow
2006-05-01 2006-04-21 2006-05-01 VU#118388 Symantec Scan Engine fails to properly perform authentication
2005-01-14 2005-01-11 2005-01-14 VU#377368 Apple iTunes fails to properly handle overly long URLs in playlists
2005-08-23 2005-08-19 2005-10-21 VU#619988 Computer Associates Message Queuing software vulnerable to buffer overflows
2000-10-31 1999-09-10 2000-10-31 VU#23412 Wang/Kodak Image Annotation ActiveX Control
2007-08-09 2007-08-08 2007-08-10 VU#201984 Cisco IOS fails to properly handle Next Hop Resolution Protocol packets
2002-09-13 2002-09-12 2002-09-18 VU#836088 Multiple vendors' email content/virus scanners do not adequately check "message/partial" MIME entities
2004-12-22 2004-10-20 2005-07-19 VU#939688 Microsoft Internet Explorer HTML Help control bypasses Local Machine Zone Lockdown
2001-07-12 2001-04-11 2001-07-17 VU#642760 Lotus Domino vulnerable to DoS via large crafted URL request
2006-10-02 2006-09-29 2006-10-02 VU#897628 Apple Mac OS X may allow network accounts to bypass service access controls
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing
2006-09-19 2006-06-19 2011-07-22 VU#933712 gzip NULL dereference in huft_build()
2005-06-14 2005-06-14 2005-07-06 VU#367077 Microsoft ISA Server 2000 vulnerable to privilege escalation via "NETBIOS" connection
2001-09-27 2001-01-30 2001-09-27 VU#115112 Sun Solaris catman creates temporary files insecurely

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis