CA-2000-21: Denial-of-Service Vulnerabilities in TCP/IP Stacks A variety of denial-of-service vulnerabilities has been explored and documented by BindView's RAZOR Security Team. These vulnerabilities allow attackers to consume limited resources on victim machines.
CA-2000-22: Input Validation Problems in LPRng A popular replacement software package to the BSD lpd printing service called LPRng contains at least one software defect, known as a "format string vulnerability," which may allow remote users to execute arbitrary code on vulnerable systems.
CA-2001-01: Interbase Server Contains Compiled-in Back Door Account Interbase is an open source database package that had previously been distributed in a closed source fashion by Borland/Inprise. Both the open and closed source verisions of the Interbase server contain a compiled-in back door account with a known password.
CA-2001-02: Multiple Vulnerabilities in BIND Domain Name System (DNS) Servers running various versions of ISC BIND (including both 4.9.x prior to 4.9.8 and 8.2.x prior to 8.2.3; 9.x is not affected) and derivatives. Because the normal operation of most services on the Internet depends on the proper operation of DNS servers, other services could be impacted if these vulnerabilities are exploited.
CA-2001-04: Unauthentic On January 29 and 30, 2001, VeriSign, Inc. issues two certificates to an individual fraudulently claiming to be an employee of Microsoft Corporation. Any code signed by these certificates will appear to be legitimately signed by Microsoft when, in fact, it is not. Once accepted, these certificates may allow an attacker to execute malicious code on the user's system.
CA-2001-05: Exploitation of snmpXdmid The CERT/CC has received numerous reports indicating that a vulnerability in snmpXdmid is being actively exploited. Exploitation of this vulnerability allows an intruder to gain privileged (root) access to the system.
