search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-10-02 2006-09-29 2006-10-02 VU#897628 Apple Mac OS X may allow network accounts to bypass service access controls
2001-07-12 2001-04-11 2001-07-17 VU#642760 Lotus Domino vulnerable to DoS via large crafted URL request
2004-12-16 2004-12-14 2004-12-16 VU#378160 Microsoft Windows Internet Naming Service (WINS) contains a buffer overflow
2005-10-26 2005-10-25 2005-10-31 VU#905177 Skype vulnerable to heap-based buffer overflow
2005-01-27 2005-01-04 2005-04-28 VU#702777 UW-imapd fails to properly authenticate users when using CRAM-MD5
2006-02-13 2006-02-06 2006-02-14 VU#124460 Microsoft HTML Help Workshop buffer overflow
2002-07-26 2002-07-24 2003-02-05 VU#399260 Microsoft SQL Server 2000 contains heap buffer overflow in SQL Server Resolution Service
2001-09-26 1998-07-06 2001-09-26 VU#182777 IBM AIX nslookup buffer overflow in lex routines
2004-09-17 2004-08-31 2004-09-17 VU#460528 Mozilla fails to properly handle script-generated events
2005-02-08 2005-02-08 2005-02-08 VU#597889 Microsoft COM Structured Storage Vulnerability
2004-07-14 2004-07-13 2004-07-14 VU#920060 Microsoft Windows HTML Help component fails to properly validate input data
2002-05-06 2002-05-05 2002-05-14 VU#635811 Sun Solaris cachefsd vulnerable to heap overflow in cfsd_calloc() function via long string of characters
2007-04-09 2007-04-03 2007-04-10 VU#388377 Yahoo! Messenger AudioConf ActiveX Control buffer overflow vulnerability
2006-05-30 2006-05-30 2006-05-30 VU#346377 Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session
2001-03-02 2001-03-01 2001-03-11 VU#176972 Lotus Domino SMTP Server Allows Anonymous Relay of Quoted Addresses

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis