search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-04-07 2004-04-07 2004-04-23 VU#659228 Cisco WLSE and HSE devices contain hardcoded username and password
2004-04-22 2004-04-14 2004-04-22 VU#566390 BEA WebLogic Server fails to properly validate certificate chains
2004-04-14 2004-04-13 2004-04-22 VU#586540 Microsoft Private Communication Technology (PCT) fails to properly validate message inputs
2004-04-20 2004-04-20 2004-04-21 VU#162451 Cisco IOS fails to properly process solicited SNMP operations
2004-03-22 2004-03-15 2004-04-20 VU#413006 Oracle Application Server Web Cache contains heap overflow vulnerability
2004-04-19 2004-04-14 2004-04-19 VU#920238 BEA WebLogic Server stores database password in clear text in "config.xml"
2004-04-16 2004-04-14 2004-04-19 VU#470470 BEA WebLogic Server fails to properly associate re-created groups
2004-04-16 2004-04-03 2004-04-16 VU#900964 FTE fails to properly validate environment variables
2004-04-16 2004-04-03 2004-04-16 VU#354838 FTE fails to properly validate command line arguments
2004-04-14 2004-04-02 2004-04-14 VU#705958 HAHTsite Scenario Server fails to handle overly long URLs
2004-04-13 2004-04-13 2004-04-14 VU#740716 Microsoft Jet Database Engine database request handling buffer overflow
2004-04-14 2004-04-07 2004-04-14 VU#737548 Sun Solaris SSH Daemon fails to properly log client IP addresses
2004-04-12 2004-01-27 2004-04-14 VU#350350 BEA WebLogic Server stores administrator password in clear text in config.xml
2004-04-14 2004-04-13 2004-04-14 VU#150236 Microsoft Windows Secure Sockets Layer (SSL) library vulnerable to DoS
2004-04-14 2004-04-13 2004-04-14 VU#638548 Microsoft Windows SSP interface fails to properly validate value used during authentication protocol selection

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis