search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-04-19 2005-04-15 2005-08-01 VU#973309 Mozilla may execute JavaScript with elevated privileges when defined in site icon tag
2005-05-10 2005-05-07 2005-08-01 VU#648758 Mozilla Firefox executes JavaScript in the "IconURL" parameter of "InstallTrigger.install()" with chrome privileges
2005-06-14 2005-06-14 2005-07-28 VU#800829 Telnet Client Information Disclosure Vulnerability
2005-04-01 2005-03-28 2005-07-28 VU#341908 Multiple Telnet Clients vulnerable to buffer overflow via the env_opt_add() function in telnet.c
2005-07-13 2005-07-13 2005-07-26 VU#138538 WebEOC is vulnerable to cross-site scripting attacks
2005-07-12 2005-07-12 2005-07-22 VU#720742 Microsoft Color Management Module buffer overflow during profile tag validation
2005-06-24 2005-06-22 2005-07-22 VU#352625 VERITAS Backup Exec Server Service contains a buffer overflow vulnerability
2005-06-24 2005-06-22 2005-07-22 VU#492105 VERITAS Backup Exec Remote Agent fails to properly validate authentication requests
2005-07-13 2005-07-13 2005-07-20 VU#258834 WebEOC privileges are based on client-side authorization
2005-07-13 2005-07-13 2005-07-20 VU#956762 WebEOC is vulnerable to a denial-of-service condition via uploading large files
2005-07-13 2005-07-13 2005-07-20 VU#372797 WebEOC contains multiple SQL injection vulnerabilities
2004-12-22 2004-10-20 2005-07-19 VU#939688 Microsoft Internet Explorer HTML Help control bypasses Local Machine Zone Lockdown
2005-07-13 2005-07-13 2005-07-14 VU#165290 WebEOC handles sensitive information in an insecure manner
2005-07-13 2005-07-13 2005-07-14 VU#491770 0 WebEOC implements weak algorithms to encrypt sensitive information
2005-07-13 2005-07-13 2005-07-14 VU#388282 WebEOC uses a global shared key

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis