search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-01-18 2001-01-18 2002-03-05 VU#118892 Older SSH clients do not allow users to disable X11 forwarding
2001-05-01 2001-02-28 2002-03-05 VU#848944 Cisco IOS creates SNMP read-only community string
2001-05-01 2001-02-28 2002-03-05 VU#645400 Cisco IOS/CatOS exposes read-write SNMP community string via traversal of View-based Access Control MIB (VACM) using read-only community string
2001-05-01 2001-02-27 2002-03-05 VU#976280 Multiple networking devices allow SNMP objects to be viewed/modified via ILMI community string
2002-02-27 2002-01-10 2002-03-05 VU#936507 Oracle 9iAS allows access to CGI script source code within CGI-BIN directory
2001-05-01 2001-02-28 2002-03-05 VU#840665 Cisco IOS/X12-X15 has default SNMP read/write string of "cable-docsis"
2000-12-22 2000-11-20 2002-03-05 VU#671444 Input validation error in quikstore.cgi allows attackers to execute commands
2000-10-06 2000-07-20 2002-03-05 VU#38950 MS Outlook "Cache Bypass" allows attackers to circumvent Internet Zone security policy
2001-01-18 2001-01-18 2002-03-05 VU#315308 Weak CRC allows last block of IDEA-encrypted SSH packet to be changed without notice
2000-10-05 2001-01-18 2002-03-05 VU#665372 SSH connections using RC4 and password authentication can be replayed
2000-09-26 2001-01-18 2002-03-05 VU#25309 Weak CRC allows RC4 encrypted SSH1 packets to be modified without notice
2000-10-27 2000-10-27 2002-03-05 VU#28027 Distributed GL Daemon (DGLD) allows attackers to identify IRIX systems
2000-09-26 2001-01-18 2002-03-05 VU#786900 SSH host key authentication can be bypassed when DNS is used to resolve localhost
2002-02-27 2002-02-27 2002-02-27 VU#297363 PHP contains vulnerability in "php_mime_split" function allowing arbitrary code execution
2002-02-27 2002-02-06 2002-02-27 VU#698467 Oracle 9iAS default configuration allows access to "globals.jsa" file

Sponsored by CISA.