search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-07-27 2001-07-02 2001-07-30 VU#654643 Allaire JRun Java Application Server vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-07-27 2001-06-27 2001-07-27 VU#677611 SCO UnixWare bnuconvert contains buffer overflow via long string of characters sent as command line argument
2001-07-27 2001-06-27 2001-10-31 VU#971179 UUCP package contains multiple buffer overflows via long string of characters sent as command line argument
2001-07-27 2001-07-02 2001-07-30 VU#981651 Caucho Technologies Resin vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-07-29 2001-07-12 2004-02-23 VU#656315 Cisco IOS vulnerable to DoS via crafted PPTP packet sent to port 1723/tcp
2001-07-30 2001-07-11 2003-04-09 VU#135531 Allaire ColdFusion Server contains vulnerability allowing unauthorized user read/delete access to files
2001-07-31 2001-06-04 2001-08-01 VU#127435 HPUX kmmodreg allows arbitrary file overwriting via symlink redirection of temporary file
2001-08-02 2001-07-12 2003-06-17 VU#131569 Microsoft Outlook View Control allows execution of arbitrary code and manipulation of user data
2001-08-03 2001-07-11 2001-08-03 VU#321475 Allaire ColdFusion Server contains vulnerability allowing templates to be overwritten by zero byte file of the same name
2001-08-09 2001-02-07 2004-07-28 VU#391347 phpSecurePages allows remote code execution
2001-08-09 2001-07-11 2003-04-14 VU#190267 McAfee ASaP VirusScan service does not adequately validate input
2001-08-09 2001-06-22 2002-08-06 VU#109475 Microsoft Windows NT and 2000 Domain Name Servers allow non-authoritative RRs to be cached by default
2001-08-10 2000-05-30 2001-08-10 VU#26188 Keys generated with PGP5i batch mode do not contain sufficient randomness on systems that use /dev/random
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching
2001-08-13 2000-12-07 2002-05-30 VU#363181 OpenSSH disregards client configuration and allows server access to ssh-agent and/or X11 after session negotiation

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis