search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-01-05 2003-12-28 2004-01-09 VU#288308 0 Microsoft Internet Information Server (IIS) vulnerable to cross-site scripting via HTTP TRACK method
2004-01-13 2003-01-13 2009-07-29 VU#749342 Multiple vulnerabilities in H.323 implementations
2004-01-14 2003-12-22 2004-01-21 VU#371470 Whale Communications e-Gap security appliance discloses source code via HTTP TRACE Method
2004-01-15 2004-01-07 2004-01-16 VU#759020 ISC InterNetNews (INN) contains buffer overflow in ARTpost() function
2004-01-15 2002-10-01 2004-01-15 VU#891177 PostgreSQL VACUUM command allows unprivileged user to remove database transaction log data
2004-01-15 2003-12-22 2004-01-16 VU#281356 Sun Solaris tcsh(1) contains vulnerability in the built-in ls-F command
2004-01-16 2004-01-14 2004-01-22 VU#738518 tcpdump contains vulnerability in ISAKMP decoding routine
2004-01-16 2004-01-14 2004-03-19 VU#955526 tcpdump contains vulnerability in RADIUS decoding function print_attr_string() in print-radius.c
2004-01-16 2004-01-14 2004-01-22 VU#174086 tcpdump contains vulnerability in ISAKMP decoding function rawprint() in print-isakmp.c
2004-01-19 2004-01-13 2004-01-19 VU#139150 Microsoft Data Access Components (MDAC) contains buffer overflow
2004-01-19 2004-01-16 2004-01-22 VU#336446 OpenCA libCheckSignature function fails to properly verify the signature of certificates
2004-01-19 2004-01-18 2004-01-23 VU#487102 Multiple tools within the Netpbm package create temporary files in an insecure manner
2004-01-20 2004-01-16 2004-01-20 VU#337238 Red Hat Enterprise Linux kernel-2.4.21 does not perform adequate checking of eflags when in 32-bit ptrace emulation mode
2004-01-21 2003-11-14 2004-01-21 VU#530660 Microsoft Exchange Server 2003 fails to assign user credentials to proper mailbox
2004-01-22 2004-01-19 2004-01-23 VU#927630 NetScreen-Security Manager fails to encrypt communications with managed devices

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis