search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-01-06 2004-12-23 2005-01-12 VU#625856 Microsoft Windows LoadImage API vulnerable to integer overflow
2004-12-17 2004-12-16 2005-01-05 VU#226184 Samba vulnerable to integer overflow processing file security descriptors
2005-01-05 2004-12-17 2005-01-05 VU#697598 Symantec Brightmail Anti-Spam Spamhunter UTF encoding error
2004-12-22 2004-10-21 2004-12-22 VU#857846 Ability Server vulnerable to buffer overflow
2004-12-17 2004-07-30 2004-12-22 VU#262350 Mozilla status elements can be disabled via JavaScript
2002-06-28 2002-06-25 2004-12-20 VU#814627 Sendmail vulnerable to buffer overflow when DNS map is specified using TXT records
2004-12-17 2004-11-17 2004-12-17 VU#743974 Microsoft Internet Explorer execCommand() method SaveAs command uses misleading "Save HTML Document" dialog
2004-11-29 2004-11-26 2004-12-17 VU#145134 Microsoft Windows Internet Naming Service (WINS) replication protocol contains a heap-based buffer overflow
2004-11-19 2004-10-05 2004-12-17 VU#557062 CUPS stores user account details in plain text in log file
2004-09-14 2004-09-14 2004-12-17 VU#297462 Microsoft Windows GDI+ contains a buffer overflow vulnerability in the JPEG parsing component
2004-12-01 2004-10-29 2004-12-17 VU#964401 Sun Java System Web Proxy Server vulnerable to buffer overflow
2004-12-16 2004-12-14 2004-12-16 VU#378160 Microsoft Windows Internet Naming Service (WINS) contains a buffer overflow
2004-12-10 2004-12-06 2004-12-10 VU#136424 Remote Execute vulnerable to denial-of-service
2004-11-03 2004-11-02 2004-12-10 VU#842160 Microsoft Internet Explorer vulnerable to buffer overflow via FRAME and IFRAME elements
2004-10-19 2004-10-13 2004-12-06 VU#673134 Microsoft MSN "Hrtbeat.ocx" ActiveX control contains unspecified vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis