search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-10-16 2000-01-08 2001-11-09 VU#30308 lpd hostname authentication bypassed with spoofed DNS
2003-03-17 2003-03-17 2003-05-30 VU#117394 Buffer Overflow in Core Microsoft Windows DLL
2007-09-13 2007-09-12 2007-10-04 VU#751808 Apple QuickTime remote command execution vulnerability
2002-05-08 2002-04-08 2002-05-08 VU#744139 AOL Instant Messenger installer adds "http://free.aol.com" to Trusted Sites Zone in Microsoft Internet Explorer
2010-11-03 2010-11-03 2010-11-03 VU#465239 NetSupport Manager Gateway transmits identifying information in plaintext
2002-01-11 2000-03-17 2002-01-11 VU#32794 iPlanet Web Server and Netscape Enterprise Server Web Publisher commands allow directory enumeration
2000-11-16 2000-05-13 2001-01-11 VU#31994 MS ActiveMovieControl Object downloads arbitrary files
2003-08-19 2001-11-28 2003-08-19 VU#705771 gtop daemon contains buffer overflow
2004-05-26 2004-05-24 2004-06-16 VU#205766 HP OpenView Select Access fails to properly decode UTF-8 encoded unicode characters in URLs
2011-07-07 2011-07-07 2011-07-07 VU#819894 libpng invalid sCAL chunk processing vulnerability
2005-07-13 2005-07-13 2005-07-14 VU#170394 WebEOC account lock-out policy may allow a denial-of-service
2004-12-13 2004-11-29 2005-03-17 VU#305294 Shortcuts may insecurely store SMB authentication information
2004-12-01 2004-10-14 2005-01-25 VU#687568 LibTIFF contains multiple integer overflows
2002-09-24 2001-10-22 2002-09-24 VU#222739 Handspring VisorPhone vulnerable to DoS via SMS image transfer
2001-09-17 2001-04-23 2001-09-17 VU#670568 Samba creates temporary files insecurely

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis