search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-10-13 2004-10-12 2005-01-24 VU#640488 Microsoft Windows contains an unchecked buffer in the NetDDE services
2004-10-13 2004-10-12 2004-10-13 VU#910998 Microsoft Windows kernel fails to properly handle invalid opcodes used in DOS emulation
2004-10-13 2004-10-12 2004-10-14 VU#649374 Microsoft Windows processing of zip files contains a buffer overflow
2004-11-22 2004-10-12 2007-02-27 VU#582498 InnerMedia DynaZip library vulnerable to buffer overflow via long file names
2004-10-13 2004-10-12 2004-10-13 VU#637760 Microsoft Internet Explorer Install Engine contains a buffer overflow vulnerability
2004-10-21 2004-10-12 2004-10-22 VU#203126 0 Microsoft IIS contains vulnerability in NNTP service
2004-10-13 2004-10-12 2004-10-18 VU#431576 Microsoft Internet Explorer vulnerable to address bar spoofing on double byte character set systems
2004-10-12 2004-10-12 2007-09-07 VU#546483 Multiple networking devices fail to set the "Secure" attribute of a cookie
2004-10-12 2004-10-12 2004-10-12 VU#274496 Microsoft Excel parameter validation error
2004-10-19 2004-10-13 2004-12-06 VU#673134 Microsoft MSN "Hrtbeat.ocx" ActiveX control contains unspecified vulnerability
2004-10-18 2004-10-13 2004-10-28 VU#630720 Microsoft Internet Explorer fails to honor "Drag and Drop" zone security preference
2004-12-01 2004-10-13 2005-03-17 VU#948752 LibTIFF contains multiple heap-based buffer overflows
2004-12-01 2004-10-14 2005-01-25 VU#687568 LibTIFF contains multiple integer overflows
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2004-11-12 2004-10-18 2004-11-15 VU#492545 Archive::Zip may not properly parse the file sizes of Zip archives

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis