search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-08-12 2005-05-24 2005-08-15 VU#814557 GNOME gedit contains format string vulnerability
2005-05-19 2005-05-19 2005-05-19 VU#372618 Groove Mobile Workspace vulnerable to script injection via SharePoint lists containing picture columns
2005-05-19 2005-05-19 2005-06-14 VU#155610 Groove Virtual Office COM objects may be accessed insecurely
2005-05-19 2005-05-19 2005-05-26 VU#232232 Groove Virtual Office may not correctly display file names
2005-05-19 2005-05-19 2005-06-03 VU#514386 Groove Mobile Workspace vulnerable to script injection via SharePoint replicated menus
2005-05-19 2005-05-19 2005-05-19 VU#443370 Groove Virtual Office sets insecure permissions on installation components
2005-05-18 2005-05-18 2005-08-23 VU#637934 TCP does not adequately validate segments before updating timestamp value
2005-05-23 2005-05-13 2005-08-05 VU#911878 Simultaneous multithreading processors may leak information through cache eviction analysis techniques
2005-05-18 2005-05-12 2005-05-25 VU#937838 Extreme Networks switches with ExtremeWare XOS allow arbitrary command execution
2005-06-08 2005-05-10 2006-02-22 VU#983429 Apple Mac OSX executes arbitrary widget with same "bundle identifier" as system widget
2005-05-09 2005-05-09 2005-07-06 VU#302220 IPsec configurations may be vulnerable to information disclosure
2005-06-08 2005-05-08 2006-02-22 VU#775661 Apple Safari automatically installs Dashboard widgets
2005-05-12 2005-05-08 2005-05-12 VU#113196 phpBB contains an input validation vulnerability in "includes/bbcode.php"
2005-05-10 2005-05-07 2005-08-09 VU#534710 Mozilla fails to properly prevent "JavaScript:" URIs containing "eval()" from being executed in the context of other URIs in the history list
2005-05-10 2005-05-07 2005-08-01 VU#648758 Mozilla Firefox executes JavaScript in the "IconURL" parameter of "InstallTrigger.install()" with chrome privileges

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis