search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-08-04 2004-08-04 2007-07-21 VU#236656 libpng png_handle_iCCP() NULL pointer dereference
2004-08-04 2004-08-04 2005-06-14 VU#388984 libpng fails to properly check length of transparency chunk (tRNS) data
2004-08-11 2004-08-09 2004-08-11 VU#139504 Sun Solaris X Display Manager does not properly handle invalid XDMCP requests
2004-08-23 2004-08-09 2004-08-23 VU#770816 CVSTrac fails to properly sanitize input passed to "filediff"
2004-08-10 2004-08-09 2004-08-31 VU#735966 AOL Instant Messenger vulnerable to buffer overflow
2004-10-20 2004-08-10 2004-10-20 VU#760256 The ActiveX and HTML file browsers of the Symantec 4400 Series Clientless VPN Gateway contains various unspecified vulnerabilities
2004-08-16 2004-08-10 2004-08-16 VU#128414 Apple Safari fails to properly handle form data in HTTP redirects
2004-09-01 2004-08-10 2004-09-01 VU#316206 Oracle Database Server contains several vulnerabilities
2004-08-11 2004-08-10 2004-08-11 VU#948750 Microsoft Outlook Web Access contains vulnerability in HTML redirection query
2004-09-07 2004-08-11 2004-10-06 VU#330638 KDE DCOPServer insecurely creates temporary files
2004-08-23 2004-08-15 2004-08-25 VU#674542 Powie's PSCRIPT Forum fails to filter user posts
2004-08-17 2004-08-16 2004-08-19 VU#579225 CVS "history" command may disclose sensitive information
2004-08-19 2004-08-18 2004-08-19 VU#989406 Cisco IOS fails to properly handle malformed OSPF packets
2004-09-14 2004-08-18 2004-10-28 VU#526089 Microsoft Internet Explorer treats arbitrary files as images for drag and drop operations
2004-08-25 2004-08-23 2005-05-16 VU#928598 Sun Solaris dtmail contains a format string vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis