search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-12 2002-01-10 2002-03-12 VU#736923 Oracle 9iAS SOAP components allow anonymous users to deploy applications by default
2001-05-25 2000-05-11 2001-08-07 VU#35085 Microsoft Internet Information Server (IIS) discloses contents of files via crafted request for .htr file
2007-08-14 2007-08-14 2007-08-15 VU#361968 Microsoft XML Core Services XMLDOM substringData() buffer overflow
2004-10-13 2004-10-12 2004-10-13 VU#637760 Microsoft Internet Explorer Install Engine contains a buffer overflow vulnerability
2001-10-26 2000-07-10 2002-08-10 VU#131923 OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2003-01-22 2003-01-22 2003-04-14 VU#850785 Sun KCMS library service daemon does not adequately validate location of KCMS profiles
2008-10-14 2008-10-14 2008-10-20 VU#166651 Husdawg, LLC Systems Requirements Lab ActiveX control and Java applet vulnerable to arbitrary code download and execution
2002-06-25 2002-06-17 2002-06-25 VU#455323 Mandrake Security may make unexpected system modifications
2008-07-16 2008-07-16 2008-07-16 VU#130923 Mozilla Firefox command line URI handling vulnerability
2003-04-07 2003-04-06 2003-04-09 VU#146785 SETI@home client vulnerable to buffer overflow
2002-06-04 2001-05-04 2002-09-18 VU#739123 ISC BIND 9 fails to process additional data chains in responses correctly thereby causing the server to fail an internal consistency check
2001-07-27 2001-06-27 2001-07-27 VU#200123 SCO UnixWare uucico contains buffer overflow via long string of characters sent as command line argument
2007-08-17 2007-07-27 2007-08-21 VU#120760 Yahoo! Installer Plugin for Widgets ActiveX control stack buffer overflow
2001-07-24 2001-07-24 2001-08-07 VU#994851 Microsoft Services for UNIX Telnet server is vulnerable to denial of service via memory leak
2001-05-07 1999-12-14 2001-05-16 VU#28934 Sun Solaris sadmind buffer overflow in amsl_verify when requesting NETMGT_PROC_SERVICE

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis