Category Archives: CUSERT

CUSERT/CC Advisories 2000-Present
Computer User Stupidity Emergency Response Team/Coordination Center

CA-2001-01 Viscosity Breakdown in Common Password Storage Devices

Original release date: June 3, 2001

A complete revision history is at the end of this file.

Systems Affected

  • Any password storage device that relies on viscous material.

Overview

Password storage devices that rely on viscous material may experience viscosity breakdown over time, rendering these devices less effective. In some cases, passwords may be lost completely.

Continue reading CA-2001-01 Viscosity Breakdown in Common Password Storage Devices

CA-2000-02 Vulnerability in Feature Common to Most Major Web Browsers

CUSERT® Advisory CA-2000-02 Vulnerability in Feature
Common to Most Major Web Browsers

This advisory is being published jointly by the CUSERT Coordination Center,
d0d-CERT, and the d0d Joint Task Force for Computer User Stupidity (JTF-CUS).

Original release date: April 23, 2000
Last revised: December 25, 2012

A complete revision history is at the end of this file.

Systems Affected

  • Most major web browsing software

Overview

A vulnerability has been discovered in most major web browsers which
provides access to the local hard disk.
This could result in fear, uncertainty, and doubt, which might cause numerous
technical support calls, and chest pains.

Continue reading CA-2000-02 Vulnerability in Feature Common to Most Major Web Browsers

CA-2000-01 Poor Error Handling in Password Authentication May Result in Authentication Failure

This advisory is being published jointly by the CUSERT Coordination Center,
d0d-CERT, and the d0d Joint Task Force for Computer User Stupidity (JTF-CUS).

Original release date: February 19, 2000

Last revised: December 25, 2012

A complete revision history is at the end of this file.

Systems Affected

  • ASCII based Password Authentication Modules

Overview

Poor error handling in many Password Authentication Modules which rely
on ASCII based data-input may result in a failure to authenticate users.
This could result in a denial of service to those users.

Continue reading CA-2000-01 Poor Error Handling in Password Authentication May Result in Authentication Failure