search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-24 2001-03-02 2003-11-05 VU#739211 PHP-Nuke does not adequately authenticate users thereby allowing attackers to change user information
2001-03-04 2001-03-03 2001-03-27 VU#320944 RhinoSoft FTP Voyager FtpTree incorrectly marked "safe for scripting"
2001-03-13 2001-03-12 2015-10-21 VU#498440 3.6 Multiple TCP/IP implementations may use statistically predictable initial sequence numbers
2001-05-01 2001-03-12 2001-06-26 VU#895496 Hewlett-Packard MPE/ix contains vulnerabitily via architected interface facility
2001-05-06 2001-03-13 2002-04-02 VU#154976 Sun Solaris SNMP proxy agent /opt/SUNWssp/bin/snmpd contains buffer overflow
2001-03-26 2001-03-15 2001-09-14 VU#648304 Sun Solaris DMI to SNMP mapper daemon snmpXdmid contains buffer overflow
2001-09-28 2001-03-19 2001-12-14 VU#596827 Weaknesses in the SSH protocol simplify brute-force attacks against passwords typed in an existing SSH session
2001-04-06 2001-03-22 2001-08-30 VU#991240 Compaq web-enabled management software acts as generic proxy
2001-03-27 2001-03-22 2001-03-31 VU#869360 Unauthentic "Microsoft Corporation" certificates issued by Verisign to an unidentifed person
2001-07-18 2001-03-26 2002-05-20 VU#176888 Linux kernel contains race condition via ptrace/procfs/execve
2001-05-01 2001-03-26 2004-02-23 VU#249224 Hewlett-Packard HP-UX newgrp command does not function properly
2001-05-03 2001-03-27 2001-08-10 VU#266032 Microsoft Visual Studio VB-TSQL debugger object vbsdicli.exe contains buffer overflow via NewSPID method
2001-03-31 2001-03-29 2004-03-05 VU#980499 Certain MIME types can cause Internet Explorer to execute arbitrary code when rendering HTML
2002-09-16 2001-03-31 2004-02-23 VU#229955 Nobreak CrazyWWWBoard contains buffer overflow via User-Agent field
2002-09-14 2001-04-03 2003-09-23 VU#208131 Jakarta Tomcat serves JSP source code when supplied malformed HTTP request

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis