search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-09-17 2004-09-14 2004-09-17 VU#414240 Mozilla Mail vulnerable to buffer overflow via "writeGroup()" function in "nsVCardObj.cpp"
2006-12-13 2006-12-07 2006-12-15 VU#885665 MySpace fails to properly filter user-supplied content
2005-10-05 2005-09-23 2005-12-16 VU#160012 Ruby safe-level security model bypass
2006-04-19 2006-04-18 2006-05-03 VU#443265 Oracle Reporting Framework vulnerability
2003-03-06 2003-03-04 2003-03-07 VU#611865 Automatic File Content Type Recognition Tool vulnerable to stack overflow
2002-10-15 2002-02-22 2002-10-16 VU#868219 Multiple vendors' HTTP content/virus scanners do not check data tunneled via HTTP CONNECT method
2001-08-27 2000-05-05 2001-08-27 VU#36312 Cayman gateways are vulnerable to a denial of sevices via a long username or password
2006-07-24 2006-06-29 2006-07-24 VU#170113 OpenOffice.org may fail to recognize embedded Basic macros
2002-10-01 1999-04-21 2002-10-16 VU#39965 DHTML Edit Control for IE5 allows local files to be uploaded to web server
2001-07-17 2001-07-16 2002-12-12 VU#688960 Teamware Office contains multiple vulnerabilities in LDAP handling code
2007-01-17 2007-01-17 2007-01-17 VU#221788 Oracle SYS.DBMS_AQ package vulnerable to PL/SQL injection
2007-06-01 2007-05-24 2007-06-01 VU#821865 CREDANT Mobile Guardian Shield fails to remove credentials from memory
2011-02-23 2011-02-23 2011-02-23 VU#136612 Mutare Software Enabled VoiceMail (EVM) system web interface cross-site request forgery vulnerabilities
2001-07-12 2000-10-18 2001-07-12 VU#118277 The Oracle Internet Directory LDAP (oidldapd) contains buffer overflow
2002-08-28 2001-06-21 2002-08-28 VU#351219 Sun Solaris ptexec does not adequately validate argument passed via -o option

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis