search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-10-08 2001-10-08 2001-10-08 VU#258731 Check Point VPN-1/FireWall-1 4.1 on Nokia IPXXX firewall appliance retransmits original packets
2001-10-08 2000-12-20 2001-10-08 VU#570952 Redhat Linux diskcheck.pl creates predictable temporary file and fails to check for existing symbolic link of same name
2001-10-09 2001-05-31 2001-10-09 VU#747736 SCO OpenServer/UnixWare vi creates temporary files insecurely
2001-10-10 2001-10-09 2001-10-11 VU#139491 Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol
2001-10-18 2001-07-25 2001-10-22 VU#847803 Php variables passed from the browser are stored in global context
2001-02-06 1998-01-20 2001-10-25 VU#19124 SSH authentication agent follows symlinks via a UNIX domain socket
2000-09-26 2000-09-26 2001-10-25 VU#22404 telnet and rlogin URLs disclose sensitive information, including Environment variables
2000-11-03 2001-01-18 2001-10-25 VU#565052 Passwords sent via SSH encrypted with RC4 can be easily cracked
2001-06-13 2001-01-16 2001-10-25 VU#850440 SSH1 may generate weak passphrase when using Secure RPC
2001-07-24 2001-07-20 2001-10-25 VU#737451 SSH Secure Shell sshd2 does not adequately authenticate logins to accounts with encrypted password fields containing two or fewer characters
2001-10-25 2001-05-24 2001-10-25 VU#178024 Cisco IOS vulnerable to deferred DoS via SYN scan to certain TCP port ranges
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2000-11-07 2001-01-18 2001-10-29 VU#684820 SSH-1 allows client authentication to be forwarded by a malicious server to another server
2001-10-29 2001-10-25 2001-10-29 VU#825275 NSI RWhoisd contains format string vulnerability in print_error()
2001-07-27 2001-06-27 2001-10-31 VU#971179 UUCP package contains multiple buffer overflows via long string of characters sent as command line argument

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis