search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-06-13 2006-06-13 2006-06-13 VU#138188 Microsoft Outlook Web Access for Exchange Server script injection vulnerability
2004-08-13 2004-08-03 2004-08-13 VU#749870 Juniper Networks NetScreen firewall contains a DoS vulnerability in the SSHv1 service
2003-07-23 2003-07-21 2003-07-23 VU#370060 Solaris systems may crash in response to certain IPv6 packets
2006-07-11 2006-07-11 2006-07-13 VU#580036 Microsoft Office fails to properly handle malformed strings
2006-10-10 2006-10-10 2007-02-27 VU#821772 Microsoft Excel fails to properly handle Lotus 1-2-3 files
2004-07-14 2004-07-13 2004-07-14 VU#647436 Microsoft Windows contains a buffer overflow in the POSIX subsystem
2005-05-06 2005-05-03 2005-05-16 VU#356070 Apple Terminal fails to properly sanitize input for "x-man-page" URI
2003-09-19 1999-04-03 2003-09-19 VU#41870 Sun Solstice AdminSuite ships with insecure default configuration
2005-08-18 2005-08-17 2005-10-13 VU#740372 Microsoft DDS Library Shape Control (msdds.dll) COM object contains an unspecified vulnerability
2006-09-14 2006-09-12 2006-09-14 VU#489836 Apple QuickTime fails to properly handle FLC movies
2007-01-03 2006-12-29 2008-04-30 VU#815960 Adobe Acrobat Plug-In cross domain violation
2011-01-12 2011-01-09 2011-01-18 VU#180119 WellinTech KingView 6.53 remote heap overflow vulnerability
2001-09-18 2001-05-14 2001-09-18 VU#137544 Microsoft IIS FTP service searches all trusted domains for user accounts
2010-02-25 2009-12-14 2010-04-29 VU#166739 APC Network Management Card web interface vulnerable to cross-site scripting and cross-site request forgery
2007-01-15 2007-01-05 2007-01-26 VU#443108 Cisco Secure Access Control Server fails to properly handle specially crafted Access-Request messages

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis