search menu icon-carat-right cmu-wordmark
Carnegie Mellon University
Please be aware that VINCE will be down for maintenance from 12 noon EST until 4 PM EST on November 19, 2025.

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-05-19 2005-05-19 2005-06-03 VU#514386 Groove Mobile Workspace vulnerable to script injection via SharePoint replicated menus
2004-08-04 2004-08-04 2005-06-01 VU#286464 libpng contains integer overflows in progressive display image reading
2004-08-04 2004-08-04 2005-06-01 VU#477512 libpng png_handle_sPLT() integer overflow
2005-05-19 2005-05-19 2005-05-26 VU#232232 Groove Virtual Office may not correctly display file names
2005-05-18 2005-05-12 2005-05-25 VU#937838 Extreme Networks switches with ExtremeWare XOS allow arbitrary command execution
2005-05-16 2005-05-03 2005-05-25 VU#331694 Apple Mac OS X chpass/chfn/chsh utilities do not properly validate external programs
2005-05-16 2005-05-03 2005-05-24 VU#706838 Apple Mac OS X vulnerable to buffer overflow via vpnd daemon
2005-02-11 2005-02-10 2005-05-23 VU#303094 OpenPGP vulnerable to chosen-ciphertext attacks in cipher feedback (CFB) mode
2005-05-19 2005-05-19 2005-05-19 VU#372618 Groove Mobile Workspace vulnerable to script injection via SharePoint lists containing picture columns
2005-05-19 2005-05-19 2005-05-19 VU#443370 Groove Virtual Office sets insecure permissions on installation components
2005-05-16 2005-05-03 2005-05-18 VU#582934 Apple Mac OS X Foundation Framework vulnerable to buffer overflow via incorrect handling of an environmental variable
2004-12-01 2004-08-25 2005-05-17 VU#555304 LibTIFF vulnerable to denial-of-service condition
2005-05-16 2005-05-03 2005-05-17 VU#354486 Apple Mac OS X Server NetInfo Setup Tool fails to validate command line parameters
2005-04-13 2005-04-12 2005-05-17 VU#259197 Microsoft Client Server Runtime System Vulnerability
2005-05-09 2005-05-03 2005-05-16 VU#258390 Apple Mac OS X with Bluetooth enabled may allow file exchange without prompting users

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis