search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-04-14 2004-04-02 2004-04-14 VU#705958 HAHTsite Scenario Server fails to handle overly long URLs
2004-04-16 2004-04-03 2004-04-16 VU#354838 FTE fails to properly validate command line arguments
2004-04-16 2004-04-03 2004-04-16 VU#900964 FTE fails to properly validate environment variables
2004-04-16 2003-03-17 2004-04-30 VU#628849 ptrace contains vulnerability allowing for local root compromise
2004-04-16 2004-04-14 2004-04-19 VU#470470 BEA WebLogic Server fails to properly associate re-created groups
2004-04-19 2004-04-14 2004-04-19 VU#920238 BEA WebLogic Server stores database password in clear text in "config.xml"
2004-04-20 2003-12-22 2006-05-01 VU#415294 The Border Gateway Protocol relies on persistent TCP sessions without specifying authentication requirements
2004-04-20 2004-04-20 2004-04-21 VU#162451 Cisco IOS fails to properly process solicited SNMP operations
2004-04-22 2004-04-14 2004-04-30 VU#352110 BEA WebLogic Server internal methods may disclose sensitive information
2004-04-22 2004-04-14 2004-04-22 VU#566390 BEA WebLogic Server fails to properly validate certificate chains
2004-04-23 2004-04-21 2004-04-23 VU#658878 BEA WebLogic Server allows unauthorized removal of EJB objects
2004-04-23 2004-04-21 2004-04-23 VU#574222 BEA WebLogic Server configuration wizard stores administrative credentials in clear text log files
2004-04-26 2004-04-21 2004-04-26 VU#184558 BEA WebLogic Server contains a vulnerability in the URL pattern matching
2004-04-30 2004-01-26 2004-05-06 VU#190366 Gaim contains a buffer overflow vulnerability in the gaim_quotedp_decode() function
2004-04-30 2004-01-26 2004-05-06 VU#655974 Gaim contains a buffer overflow vulnerability in the yahoo_decode() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis