search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-18 2001-11-05 2002-09-18 VU#243243 Entrust GetAccess does not validate user input thereby allowing users to read arbitrary files
2001-11-19 2001-10-30 2001-11-19 VU#908611 Compaq Insight Manager XE buffer overflow in SNMP and DMI functionality
2001-10-29 2001-10-25 2001-10-29 VU#825275 NSI RWhoisd contains format string vulnerability in print_error()
2002-09-24 2001-10-22 2002-09-24 VU#222739 Handspring VisorPhone vulnerable to DoS via SMS image transfer
2002-09-23 2001-10-22 2003-04-11 VU#147587 Mac OS X utility gm4 contains format string vulnerability
2004-09-10 2001-10-21 2004-10-27 VU#490708 0 Microsoft Internet Explorer window.createPopup() method creates chromeless windows
2001-10-19 2001-10-19 2001-11-01 VU#348040 RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 do not properly handle URL encoded characters in URL
2001-10-19 2001-10-19 2001-11-01 VU#609840 RSA Security ACE/Agent for Windows, ACE/Agent for Windows NT, and ACE/Agent for Windows 2000 do not properly handle null characters in URL
2001-11-05 2001-10-18 2001-11-05 VU#945747 Mac OS X executes 'recent items' with privileges of foreground application
2001-10-25 2001-10-18 2003-04-09 VU#649979 Oracle9iAS Web Cache vulnerable to buffer overflow
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal
2002-09-27 2001-10-13 2002-09-27 VU#921547 PostNuke does not adequately validate user input thereby allowing malicious user to bypass user authentication via SQL injection
2001-12-20 2001-10-10 2001-12-21 VU#140723 Advanced Poll does not adequately authenticate users
2001-11-29 2001-10-10 2001-11-29 VU#952611 Microsoft Internet Explorer (IE) calls telnet.exe with unsafe command-line arguments ("Telnet Invocation")
2001-10-10 2001-10-09 2001-10-11 VU#139491 Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis