search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-01-31 2001-10-01 2002-01-31 VU#507771 AOL Instant Messenger vulnerable to DoS via crafted packets
2001-11-19 2001-10-01 2001-11-19 VU#275979 Compaq web-enabled management software buffer overflow vulnerability
2001-10-12 2001-10-01 2001-10-31 VU#639507 Cisco PIX Firewall Manager stores enable password in plain text
2001-10-03 2001-10-02 2004-03-24 VU#595507 Common Desktop Environment (CDE) ToolTalk RPC Server rpc.ttdbserverd contains format string vulnerability
2001-10-08 2001-10-04 2004-04-30 VU#287067 Microsoft PowerPoint and Excel fail to properly detect macros thereby automatically executing malicious code via crafted document (MS01-050)
2002-04-05 2001-10-06 2002-04-05 VU#710347 AOL Instant Messenger vulnerable to DoS via crafted GIF file
2002-01-14 2001-10-06 2002-01-14 VU#990451 AOL Instant Messenger vulnerable to DoS via crafted WAV file
2002-01-14 2001-10-06 2002-01-14 VU#530299 AOL Instant Messenger vulnerable to buffer overflow via numerous fonts sent to client followed by &lt HR&gt
2002-01-14 2001-10-06 2002-01-14 VU#972499 AOL Instant Messenger vulnerable to buffer overflow via long filename
2001-10-08 2001-10-08 2001-10-08 VU#258731 Check Point VPN-1/FireWall-1 4.1 on Nokia IPXXX firewall appliance retransmits original packets
2001-10-10 2001-10-09 2001-10-11 VU#139491 Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol
2001-11-29 2001-10-10 2001-11-29 VU#952611 Microsoft Internet Explorer (IE) calls telnet.exe with unsafe command-line arguments ("Telnet Invocation")
2001-12-20 2001-10-10 2001-12-21 VU#140723 Advanced Poll does not adequately authenticate users
2002-09-27 2001-10-13 2002-09-27 VU#921547 PostNuke does not adequately validate user input thereby allowing malicious user to bypass user authentication via SQL injection
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis