search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-12-04 2001-12-04 2002-01-02 VU#157447 OpenSSH UseLogin directive permits privilege escalation
2001-12-04 2001-11-30 2001-12-04 VU#332299 Lotus Domino R5 Server vulnerable to DoS via nmap RPC scan on port 443/tcp
2001-11-29 2001-01-23 2001-12-17 VU#639760 WU-FTPD configured to use RFC 931 authentication running in debug mode contains format string vulnerability
2001-11-29 2001-10-10 2001-11-29 VU#952611 Microsoft Internet Explorer (IE) calls telnet.exe with unsafe command-line arguments ("Telnet Invocation")
2001-11-28 2001-11-28 2004-03-30 VU#362483 Cisco IOS Firewall Feature Set fails to check IP protocol type thereby allowing packets to bypass dynamic access control lists
2001-11-28 2001-04-30 2002-03-28 VU#886083 WU-FTPD does not properly handle file name globbing
2001-11-27 2000-08-10 2002-06-20 VU#635463 Microsoft SQL Server and Microsoft Data Engine (MSDE) ship with a null default password
2001-11-21 2001-11-20 2002-05-28 VU#927256 MandrakeSoft Mandrake Linux Apache default configuration enables Perl ProxyPass server on 8200/tcp
2001-11-21 2001-11-20 2002-12-06 VU#913704 MandrakeSoft Mandrake Linux Apache default configuration enables directory indexing
2001-11-21 2001-11-20 2001-12-06 VU#638011 HP-UX Line Printer Daemon Vulnerable to Directory Traversal
2001-11-20 2001-11-20 2002-12-06 VU#898480 MandrakeSoft Mandrake Linux Apache default configuration sample programs disclose server information
2001-11-19 2001-11-19 2002-11-15 VU#279763 RhinoSoft Serv-U remote administration client transmits password in plaintext
2001-11-19 2001-10-30 2001-11-19 VU#908611 Compaq Insight Manager XE buffer overflow in SNMP and DMI functionality
2001-11-19 2001-10-01 2001-11-19 VU#275979 Compaq web-enabled management software buffer overflow vulnerability
2001-11-15 2001-11-15 2001-11-27 VU#399355 Cisco IOS and CatOS fail to properly validate ARP packets thereby overwriting device's MAC address in ARP table

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis