search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-10-02 2008-09-05 2008-10-02 VU#889484 0 libpng off-by-one vulnerability
2005-01-07 2004-12-23 2014-04-23 VU#177584 0 Microsoft Windows kernel vulnerable to a denial-of-service condition via animated cursor (.ani) frame number
2004-09-17 2004-09-14 2004-09-17 VU#808216 0 Mozilla contains heap overflow in UTF8 conversion of hostname portion of URLs
2008-06-10 2008-05-31 2009-07-16 VU#878044 0 SNMPv3 improper HMAC validation allows authentication bypass
2007-06-05 2007-06-04 2007-06-07 VU#471361 0 Microsoft Internet Explorer cross-domain frame race condition
2005-08-15 2005-08-11 2005-08-22 VU#213165 0 Novell eDirectory iMonitor vulnerable to buffer overflow
2011-09-27 2002-02-08 2011-12-08 VU#864643 0 SSL 3.0 and TLS 1.0 allow chosen plaintext attack in CBC modes
2003-12-09 2003-10-03 2006-05-01 VU#325603 0 Integer overflow vulnerability in rsync
2008-06-06 2008-06-04 2008-06-06 VU#754403 0 HP Online Support Services ActiveX ExtractCab() buffer overflow
2009-03-10 2009-03-10 2009-03-17 VU#319331 0 Microsoft Windows DNS Server response validation vulnerability
2007-08-01 2007-08-02 2007-08-28 VU#724968 0 RSA key reconstruction vulnerability
2004-10-21 2004-10-12 2004-10-22 VU#203126 0 Microsoft IIS contains vulnerability in NNTP service
2009-09-15 2009-09-14 2009-09-21 VU#180065 0 Nginx ngx_http_parse_complex_uri() buffer underflow vulnerability
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching
2007-05-08 2007-05-08 2007-05-10 VU#253825 0 Microsoft Excel fails to properly process files with crafted filter records

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis