search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2000-09-26 2001-01-18 2002-03-05 VU#25309 Weak CRC allows RC4 encrypted SSH1 packets to be modified without notice
2000-11-07 2001-01-18 2001-10-29 VU#684820 SSH-1 allows client authentication to be forwarded by a malicious server to another server
2001-01-18 2001-01-18 2002-03-05 VU#315308 Weak CRC allows last block of IDEA-encrypted SSH packet to be changed without notice
2001-05-14 2001-01-18 2001-06-20 VU#386504 glibc does not check SUID bit on libraries in /etc/ld.so.cache
2000-10-05 2001-01-18 2002-03-05 VU#665372 SSH connections using RC4 and password authentication can be replayed
2001-05-06 2001-01-18 2001-06-21 VU#178560 Dallas Semiconductor iButton DS1991 vulnerable to dictionary attack
2001-01-18 2001-01-18 2002-03-05 VU#118892 Older SSH clients do not allow users to disable X11 forwarding
2001-04-06 2001-01-16 2001-08-30 VU#137024 Compaq web-enabled management software contains buffer overflow in authentication username
2001-06-13 2001-01-16 2001-10-25 VU#850440 SSH1 may generate weak passphrase when using Secure RPC
2002-09-16 2001-01-15 2003-09-18 VU#191675 /usr/libexec/vi.recover script contains vulnerability allowing arbitrary zero-length files to be removed
2001-01-10 2001-01-11 2001-01-10 VU#403307 Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
2001-06-22 2001-01-11 2001-06-26 VU#776781 tcpdump vulnerable to buffer overflow via parsing of AFS ACL packets
2001-11-08 2001-01-10 2001-11-08 VU#424080 shadow-utils useradd creates temporary files insecurely
2001-06-08 2001-01-10 2001-06-22 VU#426456 gpm creates temporary files insecurely
2001-10-09 2001-01-10 2001-11-08 VU#579928 diffutils sdiff creates temporary files insecurely

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis