search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-08-27 2000-05-23 2001-08-27 VU#104823 Cayman gateways vulnerable to a denial of service via oversized ICMP echo (ping) requests.
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching
2001-05-30 2000-05-29 2001-05-30 VU#32448 Due to insecure creation of configuration files via KApplication-class, local users can create arbitrary files when running setuid root KDE programs
2001-08-10 2000-05-30 2001-08-10 VU#26188 Keys generated with PGP5i batch mode do not contain sufficient randomness on systems that use /dev/random
2001-09-19 2000-06-05 2001-09-19 VU#22482 IE fails to check certificates properly if initial SSL connection originates in an IFRAME or Image
2000-09-26 2000-06-05 2001-04-05 VU#35958 IP Fragmentation Denial-of-Service Vulnerability in FireWall-1
2001-11-05 2000-06-09 2001-11-05 VU#40327 OpenSSH UseLogin option allows remote execution of commands as root
2001-09-20 2000-06-14 2002-01-10 VU#984555 Default installations of the Lotus Domino web server disclose system information via HTTP headers
2001-04-06 2000-06-14 2001-11-19 VU#36866 Solaris ufsrestore buffer overflow in command pathname parameters for interactive session
2000-10-02 2000-06-23 2001-02-19 VU#29823 Format string input validation error in wu-ftpd site_exec() function
2000-10-25 2000-06-27 2000-11-29 VU#27857 IE 5.01 will execute VBA code contained in Access databases when triggered from HTML code contained in an IFRAME
2001-06-18 2000-07-03 2001-06-18 VU#35842 man 'makewhatis' insecurely uses /tmp
2001-10-26 2000-07-10 2002-08-10 VU#131923 OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2003-08-21 2000-07-11 2003-08-21 VU#26825 Cisco Secure PIX Firewall TCP Reset Vulnerability
2001-06-15 2000-07-14 2001-08-07 VU#28565 Microsoft Internet Information Server (IIS) discloses contents of files via crafted request containing "+.htr"

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis