search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-11-05 2000-06-09 2001-11-05 VU#40327 OpenSSH UseLogin option allows remote execution of commands as root
2001-10-19 2001-10-19 2001-11-01 VU#609840 RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 do not properly handle null characters in URL
2001-10-19 2001-10-19 2001-11-01 VU#348040 RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 do not properly handle URL encoded characters in URL
2001-10-12 2001-10-01 2001-10-31 VU#639507 Cisco PIX Firewall Manager stores enable password in plain text
2001-07-27 2001-06-27 2001-10-31 VU#971179 UUCP package contains multiple buffer overflows via long string of characters sent as command line argument
2001-10-29 2001-10-25 2001-10-29 VU#825275 NSI RWhoisd contains format string vulnerability in print_error()
2000-11-07 2001-01-18 2001-10-29 VU#684820 SSH-1 allows client authentication to be forwarded by a malicious server to another server
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2001-10-25 2001-05-24 2001-10-25 VU#178024 Cisco IOS vulnerable to deferred DoS via SYN scan to certain TCP port ranges
2001-07-24 2001-07-20 2001-10-25 VU#737451 SSH Secure Shell sshd2 does not adequately authenticate logins to accounts with encrypted password fields containing two or fewer characters
2001-06-13 2001-01-16 2001-10-25 VU#850440 SSH1 may generate weak passphrase when using Secure RPC
2000-11-03 2001-01-18 2001-10-25 VU#565052 Passwords sent via SSH encrypted with RC4 can be easily cracked
2000-09-26 2000-09-26 2001-10-25 VU#22404 telnet and rlogin URLs disclose sensitive information, including Environment variables
2001-02-06 1998-01-20 2001-10-25 VU#19124 SSH authentication agent follows symlinks via a UNIX domain socket
2001-10-18 2001-07-25 2001-10-22 VU#847803 Php variables passed from the browser are stored in global context

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis