search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-08-18 2001-07-05 2001-08-18 VU#435963 Microsoft Windows 2000 SMTP service fails to properly authenticate credentials of unauthorized user (MS01-037)
2001-08-17 2001-07-02 2001-08-17 VU#672683 Apache Tomcat vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2001-08-15 2001-04-24 2001-08-17 VU#314776 Hewlett Packard HP-UX pcltotiff is installed with insecure permissions
2001-08-15 2001-07-19 2001-08-17 VU#420475 Hewlett-Packard Virtual Vault OS (VVOS) contains vulnerability in mkacct program
2001-08-15 2000-11-08 2001-08-15 VU#570330 MS Windows NT Terminal Server 4.0 buffer overflow in regapi.dll allows remote code execution or DoS
2001-08-15 1999-09-28 2001-08-21 VU#37828 Internet Explorer DHTML"Download Behavior" can be tricked into exposing local files
2001-08-14 2001-08-13 2001-08-14 VU#544555 Microsoft Internet Information Server 4.0 (IIS) vulnerable to DoS when URL redirecting is enabled
2001-08-14 2001-07-02 2001-08-15 VU#888283 TrendMicro InterScan WebManager contains buffer overflow in RegGo.dll
2001-08-13 2001-08-02 2002-12-12 VU#657547 Critical Path directory products contain multiple vulnerabilities in LDAP handling code
2001-08-13 2000-12-07 2002-05-30 VU#363181 OpenSSH disregards client configuration and allows server access to ssh-agent and/or X11 after session negotiation
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching
2001-08-10 2000-05-30 2001-08-10 VU#26188 Keys generated with PGP5i batch mode do not contain sufficient randomness on systems that use /dev/random
2001-08-09 2001-06-22 2002-08-06 VU#109475 Microsoft Windows NT and 2000 Domain Name Servers allow non-authoritative RRs to be cached by default
2001-08-09 2001-07-11 2003-04-14 VU#190267 McAfee ASaP VirusScan service does not adequately validate input

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis