search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2005-01-14 2005-01-11 2005-01-14 VU#377368 Apple iTunes fails to properly handle overly long URLs in playlists
2005-01-05 2004-12-20 2005-01-14 VU#420222 Konqueror fails to restrict access to Java classes
2005-01-06 2004-12-23 2005-01-12 VU#625856 Microsoft Windows LoadImage API vulnerable to integer overflow
2004-12-17 2004-12-16 2005-01-05 VU#226184 Samba vulnerable to integer overflow processing file security descriptors
2005-01-05 2004-12-17 2005-01-05 VU#697598 Symantec Brightmail Anti-Spam Spamhunter UTF encoding error
2004-12-22 2004-10-21 2004-12-22 VU#857846 Ability Server vulnerable to buffer overflow
2004-12-17 2004-07-30 2004-12-22 VU#262350 Mozilla status elements can be disabled via JavaScript
2002-06-28 2002-06-25 2004-12-20 VU#814627 Sendmail vulnerable to buffer overflow when DNS map is specified using TXT records
2004-12-17 2004-11-17 2004-12-17 VU#743974 Microsoft Internet Explorer execCommand() method SaveAs command uses misleading "Save HTML Document" dialog
2004-11-29 2004-11-26 2004-12-17 VU#145134 Microsoft Windows Internet Naming Service (WINS) replication protocol contains a heap-based buffer overflow
2004-11-19 2004-10-05 2004-12-17 VU#557062 CUPS stores user account details in plain text in log file
2004-09-14 2004-09-14 2004-12-17 VU#297462 Microsoft Windows GDI+ contains a buffer overflow vulnerability in the JPEG parsing component
2004-12-01 2004-10-29 2004-12-17 VU#964401 Sun Java System Web Proxy Server vulnerable to buffer overflow
2004-12-16 2004-12-14 2004-12-16 VU#378160 Microsoft Windows Internet Naming Service (WINS) contains a buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis