search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-05-15 2001-05-14 2001-09-18 VU#789543 IIS decodes filenames superfluously after applying security checks
2002-09-16 2001-05-11 2002-09-16 VU#199408 Microsoft Internet Explorer vulnerable to DoS via crafted ftp:// URL
2001-05-22 2001-05-10 2001-06-26 VU#655248 Microsoft Index Server contains buffer overflow
2001-05-10 2001-05-10 2003-04-09 VU#106392 Cisco IOS vulnerable to DoS via unrecognized transitive attribute in BGP UPDATE
2002-09-27 2001-05-10 2002-09-27 VU#910624 Microsoft Windows 2000 Indexing Service permits read access to files outside web root via crafted request
2001-05-09 2001-05-09 2001-05-09 VU#258632 SGI IRIX Embedded Support Partner (ESP) service rpc.espd contains buffer overflow
2001-05-17 2001-05-09 2001-06-26 VU#145904 Microsoft Windows 2000 Kerberos service vulnerable to DoS via repeated invalid requests
2001-06-22 2001-05-08 2002-12-16 VU#795707 ScreamingMedia SITEware does not adequately validate user input thereby allowing arbitrary file disclosure via directory traversal
2002-03-29 2001-05-07 2002-03-29 VU#132099 Jana Server does not adequately validate user input thereby allowing directory traversal
2002-09-26 2001-05-07 2003-02-24 VU#471691 A1Stats multiple CGI scripts fail to adequately validate user input
2002-06-04 2001-05-04 2002-09-18 VU#739123 ISC BIND 9 fails to process additional data chains in responses correctly thereby causing the server to fail an internal consistency check
2001-05-30 2001-05-02 2001-05-30 VU#700216 KDE KFM creates temporary files insecurely
2001-05-02 2001-05-01 2001-06-26 VU#516648 Microsoft Windows 2000/Internet Information Server (IIS) 5.0 Internet Printing Protocol (IPP) ISAPI contains buffer overflow (MS01-023)
2001-11-28 2001-04-30 2002-03-28 VU#886083 WU-FTPD does not properly handle file name globbing
2001-06-01 2001-04-25 2001-08-30 VU#310816 RIT Research Labs The Bat! does not properly parse <CR> characters not followed by a <LF> character

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis