search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-06-27 2001-06-27 2004-03-30 VU#812515 Cisco IOS HTTP server authentication vulnerability allows remote attackers to execute arbitrary commands
2002-03-29 2001-06-26 2002-03-29 VU#121099 ypbind contains buffer overflow
2001-08-09 2001-06-22 2002-08-06 VU#109475 Microsoft Windows NT and 2000 Domain Name Servers allow non-authoritative RRs to be cached by default
2002-08-28 2001-06-21 2002-08-28 VU#351219 Sun Solaris ptexec does not adequately validate argument passed via -o option
2002-09-27 2001-06-21 2002-09-27 VU#295867 Microsoft Word does not adequately validate macros embedded within malformed Word documents
2002-08-09 2001-06-21 2002-08-09 VU#139315 SurfControl SuperScout does not filter web requests fragmented in multiple packets
2001-06-28 2001-06-21 2001-06-28 VU#439835 Microsoft Frontpage Server Remote Application Deployment (RAD) component vulnerable to buffer overflow via malformed packet sent to server component
2001-12-07 2001-06-19 2001-12-12 VU#797027 OpenSSH does not initialize PAM session thereby allowing PAM restrictions to be bypassed
2001-12-08 2001-06-19 2004-01-14 VU#105259 Oracle Database Server vulnerable to DoS via repeated requests to Oracle listener without connecting to redirected port
2001-06-21 2001-06-19 2001-08-31 VU#484011 Solaris Line Printer Daemon (in.lpd) vulnerable to buffer overflow via transfer job routine
2002-03-29 2001-06-19 2004-02-23 VU#219043 Netwin Surge FTP Server does not adequately validate user input thereby allowing directory traversal
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2001-06-19 2001-06-18 2001-08-16 VU#952336 Microsoft Index Server/Indexing Service used by IIS 4.0/5.0 contains unchecked buffer used when encoding double-byte characters
2001-09-20 2001-06-14 2003-04-09 VU#516659 Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) module permits telnet access when no password has been set
2001-07-27 2001-06-13 2001-09-17 VU#451275 Curses library vulnerable to buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis