search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-09 2005-02-08 2005-02-10 VU#939074 Microsoft Windows XP named pipe fails to restrict anonymous access
2005-02-09 2005-02-01 2005-02-09 VU#203214 SquirrelMail may allow execution of arbitrary code
2005-02-09 2005-02-07 2005-02-10 VU#502328 SquirrelMail vulnerable to command injection because of flawed input checking in S/MIME plug-in
2005-02-10 2005-01-18 2005-02-21 VU#272296 AWStats fails to properly filter user-supplied input
2005-02-10 2005-02-08 2005-02-22 VU#107822 Symantec products vulnerable to buffer overflow via a specially crafted UPX file
2005-02-11 2005-02-10 2005-05-23 VU#303094 OpenPGP vulnerable to chosen-ciphertext attacks in cipher feedback (CFB) mode
2005-02-11 2005-02-08 2005-02-11 VU#544392 Sun Java Plugin may create temporary files with predictable names
2005-02-21 2004-12-23 2005-03-10 VU#716144 Verity Ultraseek contains a cross-site scripting vulnerability in the processing of search requests
2005-02-21 2005-02-21 2005-02-21 VU#552561 OpenConnect Webconnect MS-DOS device name denial-of-service
2005-02-21 2005-02-21 2005-02-21 VU#628411 OpenConnect Webconnect read-only directory traversal vulnerability in jretest.html
2005-02-21 2004-11-23 2005-02-21 VU#986504 WinAmp playlist handling may allow a remote buffer overflow and arbitrary code execution
2005-02-21 2004-12-22 2005-02-21 VU#372968 WinAmp contains a flaw in metadata handling in .mpa and .mp4 files
2005-02-21 2005-01-25 2005-02-21 VU#972598 SCO OpenServer vulnerable to privilege escalation in 'scosession' argument handling
2005-02-21 2005-02-11 2005-07-06 VU#356409 mod_python vulnerable to information disclosure via crafted URL
2005-02-21 2004-12-21 2005-02-22 VU#260421 0 Squid fails to parse empty access control lists correctly

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis