search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-08-21 2000-11-22 2001-08-21 VU#227312 Aladdin Ghostscript creates insecure temporary files allowing a local user to create symbolic links to other files
2001-08-15 1999-09-28 2001-08-21 VU#37828 Internet Explorer DHTML"Download Behavior" can be tricked into exposing local files
2001-08-21 2000-11-22 2001-08-22 VU#704976 Aladdin Ghostscript LD_RUN_PATH environment variable allows libraries to be loaded from current directory
2001-08-23 2001-07-02 2001-08-23 VU#560659 IBM WebSphere vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-27 2001-07-02 2001-08-27 VU#270083 IBM VisualAge Professional vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2001-08-27 2000-05-23 2001-08-27 VU#104823 Cayman gateways vulnerable to a denial of service via oversized ICMP echo (ping) requests.
2001-08-27 2001-07-09 2001-08-27 VU#312761 Cayman gateways are vulnerable to a denial of service via a portscan
2001-08-27 2000-05-05 2001-08-27 VU#36312 Cayman gateways are vulnerable to a denial of sevices via a long username or password
2001-08-27 2001-07-11 2001-08-27 VU#557136 Cayman gateways ship with null administrative and user level passwords
2001-08-29 2001-06-06 2001-08-30 VU#149424 Outlook Web Access (OWA) executes scripts contained in email attachment opened via Microsoft Internet Explorer (IE)
2001-01-05 2000-12-19 2001-08-30 VU#446689 Check Point FireWall-1 allows fragmented packets through firewall if Fast Mode is enabled
2001-06-01 2001-02-20 2001-08-30 VU#396624 Hewlett-Packard MPE/iX NM Debug does not always handle breakpoints correctly
2001-06-01 2001-02-20 2001-08-30 VU#112912 Hewlett-Packard MPE/iX linkeditor permits privilege escalation
2001-04-06 2001-03-22 2001-08-30 VU#991240 Compaq web-enabled management software acts as generic proxy
2001-04-06 2001-01-16 2001-08-30 VU#137024 Compaq web-enabled management software contains buffer overflow in authentication username

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis