search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-06-02 2006-06-01 2007-02-09 VU#243153 Mozilla may associate persisted XUL attributes with an incorrect URL
2007-12-14 2006-05-31 2007-12-14 VU#312692 Shadow Utils useradd utility sets incorrect file permissions
2006-05-30 2006-05-30 2006-06-07 VU#873409 Secure Elements Class 5 AVR client fails to properly validate the size of EM_SET_CE_PARAMETER messages
2006-05-30 2006-05-30 2006-05-31 VU#378604 WeOnlyDo! SFTP ActiveX control fails to properly restrict access to methods
2006-05-30 2006-05-30 2006-06-07 VU#207337 Secure Elements Class 5 AVR server fails to properly validate peer certificate when downloading updates
2006-05-30 2006-05-30 2006-06-07 VU#207161 Secure Elements Class 5 AVR server fails to properly authenticate registration messages
2006-05-30 2006-05-30 2006-06-07 VU#227929 Secure Elements Class 5 AVR client fails to properly validate the size of EM_GET_CE_PARAMETER messages
2006-05-30 2006-05-30 2006-05-30 VU#346377 Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session
2006-05-30 2006-05-30 2006-06-07 VU#919345 Secure Elements Class 5 AVR server fails to validate source address of messages
2006-05-30 2006-05-30 2006-06-07 VU#566553 Secure Elements Class 5 AVR uses the same RSA key for all installations
2006-05-30 2006-05-30 2006-06-07 VU#353945 Secure Elements Class 5 AVR client generates predictable CEIDs
2006-05-30 2006-05-30 2006-06-07 VU#397417 Secure Elements Class 5 AVR server fails to properly enforce access controls on console operations
2006-05-30 2006-05-30 2006-06-07 VU#912217 Secure Elements Class 5 AVR client fails to properly validate pathnames supplied in messages
2006-05-30 2006-05-30 2007-05-04 VU#487617 Secure Elements Class 5 AVR server fails to properly authenticate session start messages
2006-05-30 2006-05-30 2006-06-07 VU#921017 Secure Elements Class 5 AVR client sends messages in cleartext

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis