search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-08-14 2007-08-14 2007-08-15 VU#361968 Microsoft XML Core Services XMLDOM substringData() buffer overflow
2002-10-01 2002-02-11 2002-10-01 VU#355971 Microsoft Internet Explorer executes scripts when scripting has been disabled after bypassing initial security checks
2006-10-02 2006-09-29 2006-11-21 VU#847468 Apple Workgroup Manager fails to properly enable ShadowHash passwords
2001-10-01 2001-01-10 2004-07-28 VU#342768 getty_ps creates temporary files insecurely
2005-02-21 2004-12-22 2005-02-21 VU#372968 WinAmp contains a flaw in metadata handling in .mpa and .mp4 files
2005-02-01 2004-09-05 2005-02-03 VU#577566 QNX PPPoEd daemon vulnerable to command spoofing
2002-06-25 2002-06-12 2002-08-08 VU#811371 Microsoft SQLXML ISAPI filter vulnerable to buffer overflow via contenttype parameter
2002-05-22 2002-05-15 2002-05-30 VU#686939 Cisco Content Service Switch performs soft reset when XML data is sent to web management interface
2007-05-29 2007-05-25 2007-05-29 VU#125868 Avast! antivirus buffer overflow vulnerability
2008-06-25 2007-12-05 2008-06-25 VU#305208 Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
2001-10-16 2001-09-11 2002-01-03 VU#466239 IBM AIX line printer daemon contains a buffer overflow in chk_fhost()
2002-08-16 2002-08-16 2002-08-16 VU#818939 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_displayparamstmt" extended procedure
2006-08-07 2006-07-28 2007-05-31 VU#230208 Intel Centrino wireless network drivers fail to properly handle malformed frames
2004-11-23 2004-11-22 2004-11-23 VU#760344 Sun Java Plug-in fails to restrict access to private Java packages
2008-04-04 2006-04-17 2008-10-08 VU#162289 C compilers may silently discard some wraparound checks

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis