search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-21 2004-12-21 2005-02-22 VU#260421 0 Squid fails to parse empty access control lists correctly
2005-02-10 2005-02-08 2005-02-22 VU#107822 Symantec products vulnerable to buffer overflow via a specially crafted UPX file
2005-02-21 2005-02-17 2005-02-22 VU#839280 Gaim vulnerable to malformed SNAC packet infinite processing loop
2005-02-21 2005-02-17 2005-02-21 VU#523888 Gaim vulnerable to HTML processing denial of service
2005-02-21 2005-01-25 2005-02-21 VU#972598 SCO OpenServer vulnerable to privilege escalation in 'scosession' argument handling
2005-02-21 2004-11-23 2005-02-21 VU#986504 WinAmp playlist handling may allow a remote buffer overflow and arbitrary code execution
2005-02-21 2004-12-22 2005-02-21 VU#372968 WinAmp contains a flaw in metadata handling in .mpa and .mp4 files
2005-02-21 2005-02-21 2005-02-21 VU#628411 OpenConnect Webconnect read-only directory traversal vulnerability in jretest.html
2005-02-21 2005-02-21 2005-02-21 VU#552561 OpenConnect Webconnect MS-DOS device name denial-of-service
2005-02-10 2005-01-18 2005-02-21 VU#272296 AWStats fails to properly filter user-supplied input
2005-01-05 2004-12-15 2005-02-17 VU#356600 Microsoft Internet Explorer DHTML Editing ActiveX control contains a cross-domain vulnerability
2005-02-04 2005-01-17 2005-02-11 VU#924198 Squid LDAP authentication routines fail to check for invalid input
2005-02-11 2005-02-08 2005-02-11 VU#544392 Sun Java Plugin may create temporary files with predictable names
2005-02-09 2005-02-07 2005-02-10 VU#502328 SquirrelMail vulnerable to command injection because of flawed input checking in S/MIME plug-in
2005-02-09 2005-02-08 2005-02-10 VU#939074 Microsoft Windows XP named pipe fails to restrict anonymous access

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis