search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-06-21 2005-06-14 2005-07-07 VU#459565 paFileDB fails to properly sanitize "query" parameter in "pafiledb.php"
2005-07-07 2005-07-07 2005-07-07 VU#118125 AIX FTP server may not properly timeout ephemeral data ports
2005-07-06 2005-04-16 2005-07-06 VU#998369 Apple Web Kit-based browsers may allow remote access to local filesystem contents
2005-02-21 2005-02-11 2005-07-06 VU#356409 mod_python vulnerable to information disclosure via crafted URL
2005-05-09 2005-05-09 2005-07-06 VU#302220 IPsec configurations may be vulnerable to information disclosure
2005-05-09 2005-05-03 2005-07-06 VU#140470 Apple Mac OS X Server Admin fails to properly restrict users from using the proxy service
2005-06-14 2005-06-14 2005-07-06 VU#367077 Microsoft ISA Server 2000 vulnerable to privilege escalation via "NETBIOS" connection
2005-06-28 2005-06-16 2005-07-06 VU#612949 XMLHttpRequest Object security bypass in Opera Web Browser
2004-12-21 2004-11-19 2005-06-29 VU#497400 phpBB viewtopic.php fails to properly sanitize input passed to the "highlight" parameter
2005-06-27 2003-01-13 2005-06-29 VU#165022 Microsoft Log Sink Class ActiveX control incorrectly marked "safe for scripting"
2005-06-14 2005-06-14 2005-06-27 VU#851869 Microsoft HTML Help vulnerable to integer overflow
2005-06-14 2005-06-14 2005-06-27 VU#189754 Microsoft Internet Explorer buffer overflow in PNG image rendering component
2005-06-14 2004-12-23 2005-06-22 VU#115632 Microsoft Windows help viewer vulnerable to heap overflow
2005-01-25 2005-01-25 2005-06-21 VU#938617 BIND 9.3.0 vulnerable to denial of service in validator code
2005-06-14 2005-06-14 2005-06-20 VU#130614 Microsoft Outlook Express vulnerable to remote code execution

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis