search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-05-09 2005-05-09 2005-07-06 VU#302220 IPsec configurations may be vulnerable to information disclosure
2005-05-09 2005-05-03 2005-07-06 VU#140470 Apple Mac OS X Server Admin fails to properly restrict users from using the proxy service
2005-06-14 2005-06-14 2005-07-06 VU#367077 Microsoft ISA Server 2000 vulnerable to privilege escalation via "NETBIOS" connection
2005-06-28 2005-06-16 2005-07-06 VU#612949 XMLHttpRequest Object security bypass in Opera Web Browser
2004-12-21 2004-11-19 2005-06-29 VU#497400 phpBB viewtopic.php fails to properly sanitize input passed to the "highlight" parameter
2005-06-27 2003-01-13 2005-06-29 VU#165022 Microsoft Log Sink Class ActiveX control incorrectly marked "safe for scripting"
2005-06-14 2005-06-14 2005-06-27 VU#851869 Microsoft HTML Help vulnerable to integer overflow
2005-06-14 2005-06-14 2005-06-27 VU#189754 Microsoft Internet Explorer buffer overflow in PNG image rendering component
2005-06-14 2004-12-23 2005-06-22 VU#115632 Microsoft Windows help viewer vulnerable to heap overflow
2005-01-25 2005-01-25 2005-06-21 VU#938617 BIND 9.3.0 vulnerable to denial of service in validator code
2005-06-14 2005-06-14 2005-06-20 VU#130614 Microsoft Outlook Express vulnerable to remote code execution
2004-04-05 2003-11-25 2005-06-17 VU#323070 Outlook Express MHTML protocol handler does not properly validate source of alternate content
2004-07-09 2004-07-08 2005-06-15 VU#927014 Mozilla fails to restrict access to the "shell:" URI handler
2005-06-14 2005-06-14 2005-06-15 VU#300373 Microsoft Outlook Web Access vulnerable to cross-site scripting
2005-02-08 2005-02-08 2005-06-14 VU#580299 Microsoft Internet Explorer contains URL decoding cross-domain vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis