search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-05-16 2001-02-04 2001-06-26 VU#651994 SEDUM HTTP server permits directory traversal
2001-05-22 2001-05-10 2001-06-26 VU#655248 Microsoft Index Server contains buffer overflow
2001-05-17 2001-05-09 2001-06-26 VU#145904 Microsoft Windows 2000 Kerberos service vulnerable to DoS via repeated invalid requests
2001-05-01 2001-03-12 2001-06-26 VU#895496 Hewlett-Packard MPE/ix contains vulnerabitily via architected interface facility
2001-05-01 2000-11-21 2001-06-26 VU#818496 Microsoft Windows 2000 Workstation in mixed-mode domain may ignore domain account lockout restriction due to flaw in NTLM authentication
2000-09-29 1999-01-03 2001-06-26 VU#18287 statd bounce vulnerability
2001-05-05 2001-01-26 2001-06-25 VU#987632 NewsDaemon does not adequately filter user input to $user_username
2001-06-08 2001-01-10 2001-06-22 VU#426456 gpm creates temporary files insecurely
2001-05-17 2000-08-31 2001-06-21 VU#686403 ld.so fails to unset LD_PRELOAD before executing suid root programs
2001-05-06 2001-01-18 2001-06-21 VU#178560 Dallas Semiconductor iButton DS1991 vulnerable to dictionary attack
2001-05-14 2001-01-18 2001-06-20 VU#386504 glibc does not check SUID bit on libraries in /etc/ld.so.cache
2001-05-17 2000-12-29 2001-06-20 VU#475645 Macromedia Flash plug-in contains buffer overflow
2001-05-17 2001-01-05 2001-06-20 VU#451096 Oliver Debon Flash plug-in vulnerable to buffer overflow processing incorrectly formatted sound file
2001-05-10 2000-11-19 2001-06-19 VU#197477 AT&T WinVNC allows user access to passwords and configuration via weak registry permissions
2001-06-13 2001-01-23 2001-06-18 VU#303080 AT&T WinVNC client authentication process vulnerable to man-in-the-middle attack

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis