search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-11-03 2004-11-03 2004-11-03 VU#107998 MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request
2004-11-03 2004-11-03 2004-11-03 VU#858726 MailPost discloses sensitive system information when operating in debug mode
2004-11-03 2004-11-03 2004-11-03 VU#596046 MailPost vulnerable to cross-site scripting via an executable requested with a trailing slash appended to the filename
2004-11-04 2004-11-02 2004-11-05 VU#960454 Microsoft Internet Explorer does not properly interpret IFRAME elements when displaying URLs in the status bar
2004-11-03 2004-11-02 2004-12-10 VU#842160 Microsoft Internet Explorer vulnerable to buffer overflow via FRAME and IFRAME elements
2004-11-04 2004-11-01 2004-11-04 VU#702086 Multiple web browsers do not properly interpret BASE and FORM elements when displaying URLs in the status bar
2004-12-01 2004-10-29 2004-12-17 VU#964401 Sun Java System Web Proxy Server vulnerable to buffer overflow
2004-11-04 2004-10-28 2004-11-05 VU#925430 Multiple web browsers do not properly interpret TABLE elements when displaying URLs in the status bar
2004-12-01 2004-10-22 2004-12-01 VU#129910 SuSe Linux LibTIFF package vulnerable to buffer overflow
2004-12-22 2004-10-21 2004-12-22 VU#857846 Ability Server vulnerable to buffer overflow
2005-01-18 2004-10-20 2005-04-20 VU#685456 Veritas NetBackup "bpjava-susvc" process contains an input validation error
2004-12-22 2004-10-20 2005-07-19 VU#939688 Microsoft Internet Explorer HTML Help control bypasses Local Machine Zone Lockdown
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2004-11-12 2004-10-18 2004-11-15 VU#492545 Archive::Zip may not properly parse the file sizes of Zip archives
2004-11-08 2004-10-18 2004-11-08 VU#830214 Nortel Networks Contivity VPN Client information leakage vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis