search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-10 2005-01-18 2005-02-21 VU#272296 AWStats fails to properly filter user-supplied input
2005-02-09 2005-02-07 2005-02-10 VU#502328 SquirrelMail vulnerable to command injection because of flawed input checking in S/MIME plug-in
2005-02-09 2005-02-01 2005-02-09 VU#203214 SquirrelMail may allow execution of arbitrary code
2005-02-09 2005-02-08 2005-02-10 VU#939074 Microsoft Windows XP named pipe fails to restrict anonymous access
2005-02-09 2005-02-08 2005-02-09 VU#698835 Microsoft DHTML Drag-and-Drop events insufficiently validated
2005-02-09 2004-10-05 2007-10-16 VU#283646 Microsoft ASP.NET fails to perform proper canonicalization
2005-02-09 2005-02-08 2005-02-09 VU#340409 Microsoft Windows SharePoint Services and SharePoint Team Services cross-site scripting vulnerabilities
2005-02-09 2005-02-08 2005-02-09 VU#416001 Microsoft Office XP contains buffer overflow vulnerability
2005-02-08 2005-02-08 2005-02-08 VU#927889 Microsoft OLE buffer overflow
2005-02-08 2005-02-08 2005-02-09 VU#823971 Microsoft Internet Explorer contains a Channel Definition Format (CDF) cross-domain vulnerability
2005-02-08 2005-02-08 2005-02-08 VU#597889 Microsoft COM Structured Storage Vulnerability
2005-02-08 2005-02-08 2005-08-22 VU#843771 Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability
2005-02-08 2005-02-08 2005-06-14 VU#580299 Microsoft Internet Explorer contains URL decoding cross-domain vulnerability
2005-02-08 2005-02-08 2005-05-11 VU#652537 Microsoft Windows SMB packet validation vulnerability
2005-02-08 2005-02-08 2005-02-08 VU#820427 Microsoft Hyperlink Object Library buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis