search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-01-05 2004-12-20 2005-01-14 VU#420222 Konqueror fails to restrict access to Java classes
2004-12-22 2004-10-20 2005-07-19 VU#939688 Microsoft Internet Explorer HTML Help control bypasses Local Machine Zone Lockdown
2004-12-22 2004-10-21 2004-12-22 VU#857846 Ability Server vulnerable to buffer overflow
2004-12-21 2004-11-19 2005-06-29 VU#497400 phpBB viewtopic.php fails to properly sanitize input passed to the "highlight" parameter
2004-12-17 2004-07-30 2004-12-22 VU#262350 Mozilla status elements can be disabled via JavaScript
2004-12-17 2004-11-17 2004-12-17 VU#743974 Microsoft Internet Explorer execCommand() method SaveAs command uses misleading "Save HTML Document" dialog
2004-12-17 2004-12-16 2005-01-05 VU#226184 Samba vulnerable to integer overflow processing file security descriptors
2004-12-16 2004-12-14 2004-12-16 VU#378160 Microsoft Windows Internet Naming Service (WINS) contains a buffer overflow
2004-12-13 2004-11-29 2005-03-17 VU#305294 Shortcuts may insecurely store SMB authentication information
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2004-12-10 2004-12-06 2004-12-10 VU#136424 Remote Execute vulnerable to denial-of-service
2004-12-07 2004-02-10 2005-10-26 VU#820006 XFree86 vulnerable to buffer overflow via crafted font directory in 'fonts.alias' file
2004-12-07 2004-02-12 2005-10-25 VU#667502 XFree86 vulnerable to buffer overflow via error in 'ReadFontAlias()' function
2004-12-01 2004-10-29 2004-12-17 VU#964401 Sun Java System Web Proxy Server vulnerable to buffer overflow
2004-12-01 2004-10-14 2005-01-25 VU#687568 LibTIFF contains multiple integer overflows

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis