search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-09-28 2000-12-01 2001-09-28 VU#739201 IBM AIX setclock buffer overflow in remote timeserver argument
2002-09-27 2000-12-01 2002-09-27 VU#820957 Microsoft Internet Explorer 5.5 print template ActiveX control allows arbitrary command execution
2001-09-28 2000-12-01 2001-09-28 VU#872257 IBM AIX enq buffer overflow in -M argument
2001-05-14 2000-11-28 2006-03-30 VU#959207 Lotus Notes Java VM leaks file existence through timing difference in ECLs
2001-08-21 2000-11-22 2001-08-21 VU#227312 Aladdin Ghostscript creates insecure temporary files allowing a local user to create symbolic links to other files
2001-08-21 2000-11-22 2001-08-22 VU#704976 Aladdin Ghostscript LD_RUN_PATH environment variable allows libraries to be loaded from current directory
2002-09-27 2000-11-22 2002-09-27 VU#675320 Microsoft Windows Media Player buffer overflow in Active Stream Redirector (.asx) file parser
2001-05-01 2000-11-21 2001-06-26 VU#818496 Microsoft Windows 2000 Workstation in mixed-mode domain may ignore domain account lockout restriction due to flaw in NTLM authentication
2000-12-22 2000-11-20 2002-03-05 VU#671444 Input validation error in quikstore.cgi allows attackers to execute commands
2001-05-10 2000-11-19 2001-06-19 VU#197477 AT&T WinVNC allows user access to passwords and configuration via weak registry permissions
2000-11-13 2000-11-13 2001-03-28 VU#626919 Race condition in periodic
2002-09-27 2000-11-10 2002-09-27 VU#829845 Microsoft Windows 2000 Indexing Services enumerates local file locations via ixsso.query ActiveX object
2001-08-15 2000-11-08 2001-08-15 VU#570330 MS Windows NT Terminal Server 4.0 buffer overflow in regapi.dll allows remote code execution or DoS
2001-05-11 2000-11-07 2002-01-25 VU#198355 ISC BIND 8.2.2-P6 vulnerable to DoS when processing SRV records, aka the "srv bug"
2000-11-10 2000-11-07 2001-08-08 VU#715973 ISC BIND 8.2.2-P6 vulnerable to DoS via compressed zone transfer, aka the "zxfr bug"

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis