search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-09-07 2004-08-11 2004-10-06 VU#330638 KDE DCOPServer insecurely creates temporary files
2004-10-20 2004-08-10 2004-10-20 VU#760256 The ActiveX and HTML file browsers of the Symantec 4400 Series Clientless VPN Gateway contains various unspecified vulnerabilities
2004-08-11 2004-08-10 2004-08-11 VU#948750 Microsoft Outlook Web Access contains vulnerability in HTML redirection query
2004-09-01 2004-08-10 2004-09-01 VU#316206 Oracle Database Server contains several vulnerabilities
2004-08-16 2004-08-10 2004-08-16 VU#128414 Apple Safari fails to properly handle form data in HTTP redirects
2004-08-10 2004-08-09 2004-08-31 VU#735966 AOL Instant Messenger vulnerable to buffer overflow
2004-08-11 2004-08-09 2004-08-11 VU#139504 Sun Solaris X Display Manager does not properly handle invalid XDMCP requests
2004-08-23 2004-08-09 2004-08-23 VU#770816 CVSTrac fails to properly sanitize input passed to "filediff"
2004-08-04 2004-08-04 2005-06-14 VU#817368 libpng png_handle_sBIT() performs insufficient bounds checking
2004-08-04 2004-08-04 2007-07-21 VU#236656 libpng png_handle_iCCP() NULL pointer dereference
2004-08-04 2004-08-04 2004-08-04 VU#160448 libpng integer overflow in image height processing
2004-08-04 2004-08-04 2005-06-01 VU#286464 libpng contains integer overflows in progressive display image reading
2004-08-13 2004-08-04 2004-08-13 VU#586720 JetboxOne leaves account database unencrypted
2004-08-13 2004-08-04 2004-08-13 VU#417408 JetboxOne may allow unauthorized users to execute arbitrary code
2004-08-04 2004-08-04 2005-06-14 VU#388984 libpng fails to properly check length of transparency chunk (tRNS) data

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis