search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-11 2005-02-08 2005-02-11 VU#544392 Sun Java Plugin may create temporary files with predictable names
2005-02-09 2005-02-07 2005-02-10 VU#502328 SquirrelMail vulnerable to command injection because of flawed input checking in S/MIME plug-in
2005-02-09 2005-02-08 2005-02-10 VU#939074 Microsoft Windows XP named pipe fails to restrict anonymous access
2005-02-09 2005-02-01 2005-02-09 VU#203214 SquirrelMail may allow execution of arbitrary code
2005-02-09 2005-02-08 2005-02-09 VU#698835 Microsoft DHTML Drag-and-Drop events insufficiently validated
2005-02-09 2005-02-08 2005-02-09 VU#416001 Microsoft Office XP contains buffer overflow vulnerability
2005-02-08 2005-02-08 2005-02-09 VU#259890 Windows Media Player does not properly handle PNG images with excessive width or height values
2005-02-08 2005-02-08 2005-02-09 VU#823971 Microsoft Internet Explorer contains a Channel Definition Format (CDF) cross-domain vulnerability
2005-02-09 2005-02-08 2005-02-09 VU#340409 Microsoft Windows SharePoint Services and SharePoint Team Services cross-site scripting vulnerabilities
2005-02-08 2005-02-08 2005-02-08 VU#927889 Microsoft OLE buffer overflow
2005-02-08 2005-02-08 2005-02-08 VU#597889 Microsoft COM Structured Storage Vulnerability
2005-02-08 2005-02-08 2005-02-08 VU#820427 Microsoft Hyperlink Object Library buffer overflow
2005-02-08 2005-02-08 2005-02-08 VU#130433 Microsoft License Logging Service buffer overflow
2005-02-04 2005-01-28 2005-02-08 VU#886006 Squid vulnerable to buffer overflow via an overly long WCCP message
2005-02-04 2005-01-31 2005-02-07 VU#823350 Squid fails to properly handle oversized reply headers

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis