search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-01-31 2001-10-01 2002-01-31 VU#507771 AOL Instant Messenger vulnerable to DoS via crafted packets
2004-10-12 2004-09-23 2004-10-12 VU#584958 Macromedia JRun Server insecurely generates and handles JSESSIONIDs
2011-09-30 2011-09-30 2011-09-30 VU#901251 ProjectForum XSS vulnerability
2001-11-15 2001-11-15 2001-11-27 VU#399355 Cisco IOS and CatOS fail to properly validate ARP packets thereby overwriting device's MAC address in ARP table
2002-09-10 2002-08-30 2002-09-10 VU#531355 HP Tru64 UNIX "rdist" contains buffer overflow (SSRT2275)
2004-02-24 2004-02-18 2004-03-04 VU#518518 metamail contains multiple format string vulnerabilities
2005-01-20 2005-01-11 2005-01-20 VU#657118 Microsoft Windows Indexing Service fails to properly handle query validation
2000-11-02 1999-09-30 2000-11-02 VU#25919 Adobe Acrobat ActiveX Control buffer overflow in setview method
2000-12-15 1997-05-24 2000-12-15 VU#20851 SGI IRIX df buffer overflow in directory argument
2004-02-24 2004-02-10 2004-03-04 VU#987118 Microsoft Virtual PC for Mac insecurely handles temporary file
2006-08-21 2006-02-09 2006-08-21 VU#520718 BlackBerry Enterprise Server fails to properly handle Microsoft Word attachments
2005-11-08 2005-11-04 2005-11-08 VU#855118 Apple QuickTime PictureViewer PICT data decompression buffer overflow
2003-10-30 2001-08-07 2003-10-30 VU#822019 Avaya Argent Office requests 'HoldMusic' file from broadcast address via TFTP
2002-07-29 2002-07-29 2003-05-30 VU#405955 util-linux package vulnerable to privilege escalation when "ptmptmp" file is not removed properly when using "chfn" utility
2002-06-04 2002-05-27 2002-11-15 VU#291555 Oracle Web Cache contains buffer overflow vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis