search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-03-02 2007-02-28 2007-03-22 VU#472412 Cisco Catalyst Systems with a NAM may allow system access via spoofing the SNMP communication
2004-11-03 2004-11-02 2004-12-10 VU#842160 Microsoft Internet Explorer vulnerable to buffer overflow via FRAME and IFRAME elements
2004-08-04 2004-08-04 2005-06-14 VU#388984 libpng fails to properly check length of transparency chunk (tRNS) data
2004-08-04 2004-08-04 2005-06-01 VU#477512 libpng png_handle_sPLT() integer overflow
2006-04-20 2006-04-18 2006-04-20 VU#824833 Oracle Application Object Library vulnerability
2001-08-21 2000-11-04 2001-08-21 VU#960877 Red Hat linux restore uses insecure environment variables allowing root compromise
2002-03-11 2002-03-11 2005-07-08 VU#368819 Double Free Bug in zlib Compression Library Corrupts malloc's Internal Data Structures
2010-08-04 2010-08-04 2010-08-05 VU#703189 Invensys Wonderware Archestra ConfigurationAccessComponent ActiveX control stack buffer overflow
2006-03-17 2006-03-13 2006-03-29 VU#980084 Apple Mail buffer overflow vulnerability
2003-06-24 2003-05-28 2003-09-18 VU#479268 Apache HTTPD contains denial of service vulnerability in basic authentication module
2006-04-11 2006-04-11 2006-11-02 VU#234812 RDS.Dataspace ActiveX control bypasses ActiveX security model
2008-01-15 2008-01-15 2008-07-22 VU#347812 UPnP enabled by default in multiple devices
2006-06-16 2006-06-16 2006-07-11 VU#802324 Microsoft Excel vulnerability
2003-07-18 1998-05-21 2004-02-23 VU#12212 Weaknesses in MIT magic cookie and XDM X Windows authorization
2006-10-11 2006-10-02 2006-11-08 VU#788860 Trend Micro OfficeScan Management Console ActiveX control format string vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis