search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-05-19 2005-05-19 2005-05-19 VU#443370 Groove Virtual Office sets insecure permissions on installation components
2005-05-18 2005-05-12 2005-05-25 VU#937838 Extreme Networks switches with ExtremeWare XOS allow arbitrary command execution
2005-05-18 2005-05-18 2005-08-23 VU#637934 TCP does not adequately validate segments before updating timestamp value
2005-05-16 2005-05-03 2005-05-24 VU#706838 Apple Mac OS X vulnerable to buffer overflow via vpnd daemon
2005-05-16 2005-05-03 2005-05-17 VU#354486 Apple Mac OS X Server NetInfo Setup Tool fails to validate command line parameters
2005-05-16 2005-05-03 2005-05-25 VU#331694 Apple Mac OS X chpass/chfn/chsh utilities do not properly validate external programs
2005-05-16 2005-05-03 2005-05-18 VU#582934 Apple Mac OS X Foundation Framework vulnerable to buffer overflow via incorrect handling of an environmental variable
2005-05-12 2005-05-08 2005-05-12 VU#113196 phpBB contains an input validation vulnerability in "includes/bbcode.php"
2005-05-11 2005-05-06 2005-05-12 VU#812438 Sun StorEdge 6130 array may allow unauthorized users to delete data
2005-05-11 2005-05-06 2005-11-07 VU#790533 RSA Authentication Agent for Web for IIS vulnerable to heap overflow via overly large "chunk"
2005-05-10 2005-05-07 2005-08-01 VU#648758 Mozilla Firefox executes JavaScript in the "IconURL" parameter of "InstallTrigger.install()" with chrome privileges
2005-05-10 2005-05-07 2005-08-09 VU#534710 Mozilla fails to properly prevent "JavaScript:" URIs containing "eval()" from being executed in the context of other URIs in the history list
2005-05-10 2005-04-19 2005-05-13 VU#668916 Microsoft Windows Explorer vulnerable to script injection via the Web View DLL
2005-05-09 2005-05-03 2005-05-16 VU#258390 Apple Mac OS X with Bluetooth enabled may allow file exchange without prompting users
2005-05-09 2005-05-03 2005-07-06 VU#140470 Apple Mac OS X Server Admin fails to properly restrict users from using the proxy service

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis