search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-12-14 2007-12-11 2007-12-14 VU#321233 Microsoft DirectX remote code execution
2004-08-04 2004-08-04 2005-06-01 VU#477512 libpng png_handle_sPLT() integer overflow
2001-08-21 2000-11-04 2001-08-21 VU#960877 Red Hat linux restore uses insecure environment variables allowing root compromise
2004-08-04 2004-08-04 2005-06-14 VU#388984 libpng fails to properly check length of transparency chunk (tRNS) data
2003-03-17 2003-02-28 2003-04-03 VU#630433 NetPBM contains multiple buffer overflow vulnerabilities
2006-06-06 2006-05-18 2006-06-07 VU#466428 Skype URI handler fails to properly parse parameters
2005-02-08 2005-02-08 2005-02-08 VU#927889 Microsoft OLE buffer overflow
2003-06-24 2003-05-28 2003-09-18 VU#479268 Apache HTTPD contains denial of service vulnerability in basic authentication module
2007-08-14 2007-08-14 2009-04-13 VU#747233 Motive Communications ActiveUtils EmailData ActiveX control stack buffer overflows
2006-04-11 2006-04-11 2006-11-02 VU#234812 RDS.Dataspace ActiveX control bypasses ActiveX security model
2003-06-09 2003-06-09 2003-10-14 VU#471084 Linux kernel IP stack incorrectly calculates size of an ICMP citation for ICMP errors
2008-01-15 2008-01-15 2008-07-22 VU#347812 UPnP enabled by default in multiple devices
2005-01-20 2004-12-14 2005-03-09 VU#253024 Adobe Acrobat Reader for UNIX contains a buffer overflow in mailListIsPdf()
2006-10-11 2006-10-02 2006-11-08 VU#788860 Trend Micro OfficeScan Management Console ActiveX control format string vulnerability
2003-07-18 1998-05-21 2004-02-23 VU#12212 Weaknesses in MIT magic cookie and XDM X Windows authorization

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis