CERT Vulnerability Notes Database

Published	Public	Updated	ID	CVSS	Title
2008-02-04	2007-11-22	2008-08-13	VU#776931		Aurigma ImageUploader ActiveX control stack buffer overflows
2008-06-11	2007-11-21	2008-06-11	VU#315107		SkyPortal contains multiple SQL injection vulnerabilities
2007-11-20	2007-11-20	2007-11-20	VU#512193		IBM Director fails to properly time-out connection requests from clients
2007-11-19	2007-11-19	2008-02-26	VU#138633	0	Invensys Wonderware InTouch creates insecure NetDDE share
2008-03-22	2007-11-16	2008-05-13	VU#936529		Microsoft Jet Engine stack buffer overflow
2007-11-13	2007-11-13	2007-11-13	VU#484649		Microsoft Windows DNS Server vulnerable to cache poisoning
2007-11-08	2007-11-07	2008-11-20	VU#715737		Mozilla-based browsers jar: URI cross-site scripting vulnerability
2007-12-04	2007-11-05	2007-12-04	VU#438616		Mortbay Jetty fails to properly handle cookies with quotes
2007-11-14	2007-11-05	2007-11-14	VU#797875		Apple QuickTime code execution vulnerability
2007-11-13	2007-11-05	2007-11-13	VU#690515		Apple QuickTime buffer overflow vulnerability
2007-12-04	2007-11-05	2007-12-04	VU#237888		Mortbay Jetty Dump Servlet vulnerable to cross-site scripting
2007-11-08	2007-11-05	2007-11-08	VU#319771		Apple QuickTime for Java may allow Java applets to gain elevated privileges
2007-11-15	2007-11-05	2007-11-15	VU#445083		Apple QuickTime heap buffer overflow vulnerability
2007-12-04	2007-11-03	2007-12-04	VU#212984		Mortbay Jetty vulnerable to HTTP response splitting
2007-11-02	2007-11-01	2009-04-13	VU#298521		SonicWall NetExtender NELaunchCtrl ActiveX control stack buffer overflow

Software Engineering Institute