Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-0359 | 1 Marc Schaefer | 1 Ptylogin | 2008-09-09 | 7.5 HIGH | N/A |
| ptylogin in Unix systems allows users to perform a denial of service by locking out modems, dial out with that modem, or obtain passwords. | |||||
| CVE-1999-0371 | 1 University Of Kansas | 1 Lynx | 2008-09-09 | 1.2 LOW | N/A |
| Lynx allows a local user to overwrite sensitive files through /tmp symlinks. | |||||
| CVE-1999-0373 | 1 Debian | 1 Debian Linux | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root. | |||||
| CVE-1999-0374 | 1 Debian | 1 Debian Linux | 2008-09-09 | 2.1 LOW | N/A |
| Debian GNU/Linux cfengine package is susceptible to a symlink attack. | |||||
| CVE-1999-0388 | 1 Datalynx | 1 Suguard | 2008-09-09 | 4.6 MEDIUM | N/A |
| DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root. | |||||
| CVE-1999-0389 | 1 Debian | 1 Debian Linux | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in the bootp server in the Debian Linux netstd package. | |||||
| CVE-1999-0073 | 2 Digital, Sgi | 3 Osf 1, Unix, Irix | 2008-09-09 | 10.0 HIGH | N/A |
| Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access. | |||||
| CVE-1999-0019 | 7 Data General, Ibm, Ncr and 4 more | 10 Dg Ux, Aix, Mp-ras and 7 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Delete or create a file via rpc.statd, due to invalid information. | |||||
| CVE-1999-0130 | 7 Bsdi, Caldera, Eric Allman and 4 more | 7 Bsd Os, Network Desktop, Sendmail and 4 more | 2008-09-09 | 7.2 HIGH | N/A |
| Local users can start Sendmail in daemon mode and gain root privileges. | |||||
| CVE-1999-0016 | 6 Cisco, Gnu, Hp and 3 more | 8 Ios, Inet, Hp-ux and 5 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Land IP denial of service. | |||||
| CVE-1999-0014 | 3 Cde, Hp, Ibm | 4 Cde, Hp-ux, Vvos and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Unauthorized privileged access or denial of service via dtappgather program in CDE. | |||||
| CVE-1999-0167 | 1 Sun | 1 Sunos | 2008-09-09 | 4.6 MEDIUM | N/A |
| In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. | |||||
| CVE-1999-0071 | 1 Apache | 1 Http Server | 2008-09-09 | 7.5 HIGH | N/A |
| Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. | |||||
| CVE-1999-0032 | 5 Bsdi, Freebsd, Next and 2 more | 5 Bsd Os, Freebsd, Nextstep and 2 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. | |||||
| CVE-1999-0072 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in AIX xdat gives root access to local users. | |||||
| CVE-1999-0111 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| RIP v1 is susceptible to spoofing. | |||||
| CVE-1999-0013 | 1 Ssh | 1 Ssh | 2008-09-09 | 7.5 HIGH | N/A |
| Stolen credentials from SSH clients via ssh-agent program, allowing other local users to access remote accounts belonging to the ssh-agent user. | |||||
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2008-09-09 | 5.0 MEDIUM | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | |||||
| CVE-1999-0110 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0315. Reason: This candidate's original description had a typo that delayed it from being detected as a duplicate of CVE-1999-0315. Notes: All CVE users should reference CVE-1999-0315 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0156 | 1 Washington University | 1 Wu-ftpd | 2008-09-09 | 4.6 MEDIUM | N/A |
| wu-ftpd FTP daemon allows any user and password combination. | |||||
| CVE-1999-0134 | 1 Sun | 1 Sunos | 2008-09-09 | 7.2 HIGH | N/A |
| vold in Solaris 2.x allows local users to gain root access. | |||||
| CVE-1999-0033 | 5 Ibm, Ncr, Sco and 2 more | 7 Aix, Mp-ras, Open Desktop and 4 more | 2008-09-09 | 7.2 HIGH | N/A |
| Command execution in Sun systems via buffer overflow in the at program. | |||||
| CVE-1999-0020 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0032. Reason: This candidate is a duplicate of CVE-1999-0032. Notes: All CVE users should reference CVE-1999-0032 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0155 | 1 Aladdin Enterprises | 1 Ghostscript | 2008-09-09 | 7.5 HIGH | N/A |
| The ghostscript command with the -dSAFER option allows remote attackers to execute commands. | |||||
| CVE-1999-0021 | 1 Muhammad A. Muquit | 1 Wwwcount | 2008-09-09 | 7.5 HIGH | N/A |
| Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program. | |||||
| CVE-1999-0196 | 1 Webgais Development Team | 1 Webgais | 2008-09-09 | 5.0 MEDIUM | N/A |
| websendmail in Webgais 1.0 allows a remote user to access arbitrary files and execute arbitrary code via the receiver parameter ($VAR_receiver variable). | |||||
| CVE-1999-0074 | 4 Freebsd, Linux, Microsoft and 1 more | 4 Freebsd, Linux Kernel, Windows Nt and 1 more | 2008-09-09 | 6.4 MEDIUM | N/A |
| Listening TCP ports are sequentially allocated, allowing spoofing attacks. | |||||
| CVE-1999-0034 | 4 Bsdi, Larry Wall, Redhat and 1 more | 4 Bsd Os, Perl, Linux and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in suidperl (sperl), Perl 4.x and 5.x. | |||||
| CVE-1999-0075 | 1 Washington University | 1 Wu-ftpd | 2008-09-09 | 5.0 MEDIUM | N/A |
| PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password. | |||||
| CVE-1999-0086 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| AIX routed allows remote users to modify sensitive files. | |||||
| CVE-1999-0195 | 2 Linux, Sgi | 2 Linux Kernel, Irix | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1. | |||||
| CVE-1999-0035 | 2 Gnu, Sgi | 2 Inet, Irix | 2008-09-09 | 5.1 MEDIUM | N/A |
| Race condition in signal handling routine in ftpd, allowing read/write arbitrary files. | |||||
| CVE-1999-0194 | 2008-09-09 | 5.0 MEDIUM | N/A | ||
| Denial of service in in.comsat allows attackers to generate messages. | |||||
| CVE-1999-0193 | 1 Ascend | 1 Cascadeview Ux | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Ascend and 3com routers, which can be rebooted by sending a zero length TCP option. | |||||
| CVE-1999-0184 | 1 Isc | 1 Bind | 2008-09-09 | 6.4 MEDIUM | N/A |
| When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. | |||||
| CVE-1999-0183 | 2 Linux, Tftp | 2 Linux Kernel, Tftp | 2008-09-09 | 6.4 MEDIUM | N/A |
| Linux implementations of TFTP would allow access to files outside the restricted directory. | |||||
| CVE-1999-0182 | 1 Samba | 1 Samba | 2008-09-09 | 10.0 HIGH | N/A |
| Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. | |||||
| CVE-1999-0133 | 1 Adobe | 1 Framemaker | 2008-09-09 | 2.1 LOW | N/A |
| fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access. | |||||
| CVE-1999-0181 | 1 Rpc.walld | 1 Rpc.walld | 2008-09-09 | 6.8 MEDIUM | N/A |
| The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands. | |||||
| CVE-1999-0087 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in AIX telnet can freeze a system and prevent users from accessing the server. | |||||
| CVE-1999-0037 | 2 Freebsd, Redhat | 2 Freebsd, Linux | 2008-09-09 | 7.5 HIGH | N/A |
| Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail. | |||||
| CVE-1999-0017 | 9 Caldera, Freebsd, Gnu and 6 more | 11 Openlinux, Freebsd, Inet and 8 more | 2008-09-09 | 7.5 HIGH | N/A |
| FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. | |||||
| CVE-1999-0057 | 5 Eric Allman, Freebsd, Hp and 2 more | 7 Vacation, Freebsd, Hp-ux and 4 more | 2008-09-09 | 7.5 HIGH | N/A |
| Vacation program allows command execution by remote users through a sendmail command. | |||||
| CVE-1999-0107 | 1 Apache | 1 Http Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. | |||||
| CVE-1999-0170 | 1 Digital | 1 Ultrix | 2008-09-09 | 7.5 HIGH | N/A |
| Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list. | |||||
| CVE-1999-0131 | 8 Bsdi, Digital, Eric Allman and 5 more | 9 Bsd Os, Osf 1, Sendmail and 6 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | |||||
| CVE-1999-0058 | 1 Php | 1 Php | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in PHP cgi program, php.cgi allows shell access. | |||||
| CVE-1999-0153 | 2 Microsoft, Sco | 4 Windows 2000, Windows 95, Windows Nt and 1 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | |||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2008-09-09 | 10.0 HIGH | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | |||||
| CVE-1999-0060 | 1 Lucent | 3 Ascend Max Router, Ascend Pipeline Router, Ascend Tnt Router | 2008-09-09 | 5.0 MEDIUM | N/A |
| Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool. | |||||