search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-06-22 2007-06-22 2008-06-04 VU#389868 Apple WebKit frame rendering memory corruption vulnerability
2005-05-16 2005-05-03 2005-05-25 VU#331694 Apple Mac OS X chpass/chfn/chsh utilities do not properly validate external programs
2001-10-11 2001-10-01 2003-04-14 VU#782155 OpenView Network Node Manager contains vulnerability allowing for privilege escalation
2002-06-11 2002-05-29 2003-04-03 VU#159203 Novell NetWare default installation contains sample files that disclose sensitive server information
2006-09-28 2006-09-28 2007-02-09 VU#247744 OpenSSL may fail to properly parse invalid ASN.1 structures
2002-02-28 2002-02-06 2002-03-15 VU#878603 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Authorization header
2012-02-01 2012-02-01 2012-02-01 VU#763355 802.1X password exploit on many HTC Android devices
2006-07-11 2006-07-11 2006-07-13 VU#257164 Microsoft DHCP Client service contains a buffer overflow
2002-06-05 2002-02-26 2002-06-05 VU#755755 Yahoo! Messenger contains a buffer overflow in "set_buddygrp" when adding users to a buddy list via the web
2004-10-13 2004-10-12 2004-10-13 VU#218526 Microsoft Windows contains vulnerability in Window Management API
2002-07-25 2002-04-18 2003-02-05 VU#796313 Microsoft SQL Server service account registry key has weak permissions that permit privilege escalation
2002-09-16 2002-03-28 2002-12-10 VU#152955 IBM AIX FC contains buffer overflow exploitable during session setup
2006-03-03 2005-12-22 2006-03-06 VU#351217 Apple Safari WebKit component vulnerable to buffer overflow
2007-03-07 2007-02-23 2007-04-05 VU#377812 Mozilla Network Security Services (NSS) fails to properly process malformed SSLv2 server messages
2001-04-10 2001-04-10 2001-04-11 VU#490344 Alcatel ADSL modems provide unauthenticated TFTP access via physical WAN interface

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis