search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-11-22 2004-10-12 2007-02-27 VU#582498 InnerMedia DynaZip library vulnerable to buffer overflow via long file names
2004-11-19 2004-10-05 2004-12-17 VU#557062 CUPS stores user account details in plain text in log file
2004-11-17 2004-11-15 2005-04-20 VU#457622 Samba QFILEPATHINFO handling routine contains a remotely exploitable buffer overflow
2004-11-12 2004-10-18 2004-11-15 VU#492545 Archive::Zip may not properly parse the file sizes of Zip archives
2004-11-10 2004-11-10 2004-11-11 VU#630104 Cisco IOS fails to properly handle malformed DHCP packets
2004-11-08 2004-10-18 2004-11-08 VU#830214 Nortel Networks Contivity VPN Client information leakage vulnerability
2004-11-04 2004-10-28 2004-11-05 VU#925430 Multiple web browsers do not properly interpret TABLE elements when displaying URLs in the status bar
2004-11-04 2004-11-01 2004-11-04 VU#702086 Multiple web browsers do not properly interpret BASE and FORM elements when displaying URLs in the status bar
2004-11-04 2004-11-02 2004-11-05 VU#960454 Microsoft Internet Explorer does not properly interpret IFRAME elements when displaying URLs in the status bar
2004-11-03 2004-11-02 2004-12-10 VU#842160 Microsoft Internet Explorer vulnerable to buffer overflow via FRAME and IFRAME elements
2004-11-03 2004-11-03 2004-11-03 VU#858726 MailPost discloses sensitive system information when operating in debug mode
2004-11-03 2004-11-03 2004-11-03 VU#306086 MailPost vulnerable file system information disclosure via HTTP GET request
2004-11-03 2004-11-03 2004-11-03 VU#596046 MailPost vulnerable to cross-site scripting via an executable requested with a trailing slash appended to the filename
2004-11-03 2004-11-03 2004-11-03 VU#107998 MailPost vulnerable to cross-site scripting in the 'append' variable passed to the file as part of an HTTP GET request
2004-10-22 2004-08-25 2004-10-25 VU#981134 Linux kernel USB drivers do not initialize kernel memory properly

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis