search menu icon-carat-right cmu-wordmark
Carnegie Mellon University
Please be aware that VINCE will be down for maintenance from 12 noon EST until 4 PM EST on November 19, 2025.

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-03-17 2004-03-17 2005-05-06 VU#465542 OpenSSL does not properly handle unknown message types
2004-03-17 2004-03-17 2004-03-26 VU#288574 OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-16 2004-03-11 2004-03-17 VU#831534 cPanel fails to verify input passed to the "user" parameter
2004-03-15 2003-12-15 2004-03-15 VU#878526 Apple Mac OS X "cd9660.util" buffer overflow
2004-03-10 2004-03-09 2004-03-15 VU#688094 Microsoft MSN Messenger fails to properly validate file requests
2004-03-10 2004-03-09 2004-03-11 VU#982630 Microsoft Windows Media Services fails to properly validate TCP requests
2004-03-10 2004-02-18 2004-03-25 VU#981222 Linux kernel mremap(2) system call does not properly check return value from do_munmap() function
2004-03-09 2004-03-09 2004-03-15 VU#305206 Microsoft Outlook fails to properly filter parameters passed via "mailto:" URL
2004-03-09 2004-03-02 2004-03-09 VU#114070 NetScreen Instant Virtual Extranet (IVE) platform contains cross-site scripting vulnerability in delhomepage.cgi
2004-03-09 2004-01-05 2004-08-19 VU#490620 Linux kernel do_mremap() call creates virtual memory area of 0 bytes in length
2004-03-09 2004-02-12 2004-03-09 VU#493966 Libxml2 URI parsing errors in nanohttp and nanoftp
2004-03-08 2004-01-28 2004-03-15 VU#902374 Apple Mac OS X TruBlueEnvironment vulnerable to buffer overflow
2004-03-08 2004-01-26 2004-03-19 VU#197318 IBM Net.Data db2www CGI interpreter fails to properly validate requested macro filenames
2004-03-05 2004-01-22 2004-03-05 VU#584606 NTP service vulnerable to internal overflow if date / time offset is greater than 34 years
2004-03-05 2004-02-26 2004-03-05 VU#694782 Sun Solaris passwd command allows for privilege escalation

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis