search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-08-27 2000-05-23 2001-08-27 VU#104823 Cayman gateways vulnerable to a denial of service via oversized ICMP echo (ping) requests.
2001-08-27 2001-07-02 2001-08-27 VU#270083 IBM VisualAge Professional vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-23 2001-07-02 2001-08-23 VU#560659 IBM WebSphere vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-21 2000-11-22 2001-08-22 VU#704976 Aladdin Ghostscript LD_RUN_PATH environment variable allows libraries to be loaded from current directory
2001-08-21 2001-06-12 2001-11-15 VU#655259 OpenSSH allows arbitrary file deletion via symlink redirection of temporary file
2001-08-21 2000-11-22 2001-08-21 VU#227312 Aladdin Ghostscript creates insecure temporary files allowing a local user to create symbolic links to other files
2001-08-21 2000-11-04 2001-08-21 VU#960877 Red Hat linux restore uses insecure environment variables allowing root compromise
2001-08-21 2000-10-31 2001-08-21 VU#153653 Linux dump uses environment variables insecurely, allowing for root compromise
2001-08-20 2001-01-30 2003-05-29 VU#417216 sort creates temporary files insecurely
2001-08-18 2001-07-05 2001-08-18 VU#435963 Microsoft Windows 2000 SMTP service fails to properly authenticate credentials of unauthorized user (MS01-037)
2001-08-17 2001-07-02 2001-08-17 VU#672683 Apache Tomcat vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2001-08-15 2001-04-24 2001-08-17 VU#314776 Hewlett Packard HP-UX pcltotiff is installed with insecure permissions
2001-08-15 2001-07-19 2001-08-17 VU#420475 Hewlett-Packard Virtual Vault OS (VVOS) contains vulnerability in mkacct program
2001-08-15 2000-11-08 2001-08-15 VU#570330 MS Windows NT Terminal Server 4.0 buffer overflow in regapi.dll allows remote code execution or DoS

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis