search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-06-05 2002-02-21 2002-10-24 VU#887319 Yahoo! Messenger contains buffer overflow in "IMvironment" field
2007-05-09 2007-05-08 2007-05-09 VU#555489 Microsoft Word fails to properly parse crafted rich text content
2002-08-05 2001-12-17 2003-04-11 VU#157795 Magic Enterprise contains multiple shell scripts that allow arbitrary file overwriting via symlink redirection of temporary file
2007-04-18 2007-04-17 2007-04-24 VU#809457 Oracle Database vulnerable to privilege escalation
2005-01-21 2005-01-19 2005-01-21 VU#613384 Cisco IOS embedded call processing solutions contain unspecified DoS vulnerability
2000-10-31 1999-09-10 2000-10-31 VU#26924 Wang/Kodak Image Admin ActiveX Control
2007-06-05 2007-06-05 2007-06-05 VU#292457 HP System Management Homepage cross-site scripting vulnerability
2003-02-11 2003-02-07 2003-02-11 VU#134025 kernel-utils sets insecure permissions on "uml_net" utility
2006-07-14 2006-07-12 2006-07-14 VU#205225 Cisco Router Web Setup (CRWS) contains an insecure default IOS configuration
2006-11-30 2006-11-28 2006-12-20 VU#323424 Apple Mac OS X Apple Type Services server fails to securely create error log files
2001-10-25 2001-05-24 2001-10-25 VU#178024 Cisco IOS vulnerable to deferred DoS via SYN scan to certain TCP port ranges
2003-03-19 2003-03-18 2004-02-11 VU#516825 Integer overflow in Sun RPC XDR library routines
2001-09-18 2001-08-15 2001-09-18 VU#959211 Microsoft IIS vulnerable to DoS via invalid request for very long WebDAV requests
2008-01-31 2008-01-10 2008-01-31 VU#767825 Liferay Portal fails to protect against CSRF
2011-06-02 2011-05-31 2011-08-18 VU#127584 RSLinx Classic EDS Wizard buffer overflow vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis