search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-05-03 2004-02-18 2004-05-04 VU#782958 Apple QuickTime contains an integer overflow in the "QuickTime.qts" extension
2004-04-30 2000-11-01 2006-02-03 VU#540517 libgcc contains multiple flaws that allow integer type range vulnerabilities to occur at runtime
2004-04-30 2004-01-26 2004-05-06 VU#226974 Gaim contains an off-by-one buffer overflow vulnerability in the gaim_quotedp_decode() function
2004-04-30 2004-01-26 2004-05-06 VU#404470 Gaim contains an off-by-one buffer overflow vulnerability in the yahoo_decode() function
2004-04-30 2004-01-26 2004-05-06 VU#655974 Gaim contains a buffer overflow vulnerability in the yahoo_decode() function
2004-04-30 2004-01-26 2004-05-06 VU#190366 Gaim contains a buffer overflow vulnerability in the gaim_quotedp_decode() function
2004-04-26 2004-04-21 2004-04-26 VU#184558 BEA WebLogic Server contains a vulnerability in the URL pattern matching
2004-04-23 2004-04-21 2004-04-23 VU#574222 BEA WebLogic Server configuration wizard stores administrative credentials in clear text log files
2004-04-23 2004-04-21 2004-04-23 VU#658878 BEA WebLogic Server allows unauthorized removal of EJB objects
2004-04-22 2004-04-14 2004-04-22 VU#566390 BEA WebLogic Server fails to properly validate certificate chains
2004-04-22 2004-04-14 2004-04-30 VU#352110 BEA WebLogic Server internal methods may disclose sensitive information
2004-04-20 2004-04-20 2004-04-21 VU#162451 Cisco IOS fails to properly process solicited SNMP operations
2004-04-20 2003-12-22 2006-05-01 VU#415294 The Border Gateway Protocol relies on persistent TCP sessions without specifying authentication requirements
2004-04-19 2004-04-14 2004-04-19 VU#920238 BEA WebLogic Server stores database password in clear text in "config.xml"
2004-04-16 2004-04-14 2004-04-19 VU#470470 BEA WebLogic Server fails to properly associate re-created groups

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis