Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-0074 | 4 Freebsd, Linux, Microsoft and 1 more | 4 Freebsd, Linux Kernel, Windows Nt and 1 more | 2008-09-09 | 6.4 MEDIUM | N/A |
| Listening TCP ports are sequentially allocated, allowing spoofing attacks. | |||||
| CVE-1999-0048 | 3 Debian, Ibm, Nec | 5 Netkit, Aix, Asl Ux 4800 and 2 more | 2008-09-09 | 10.0 HIGH | N/A |
| Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges. | |||||
| CVE-1999-0086 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| AIX routed allows remote users to modify sensitive files. | |||||
| CVE-1999-0100 | 1 Isc | 1 Inn | 2008-09-09 | 10.0 HIGH | N/A |
| Remote access in AIX innd 1.5.1, using control messages. | |||||
| CVE-1999-0159 | 1 Cisco | 1 Ios | 2008-09-09 | 5.0 MEDIUM | N/A |
| Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases. | |||||
| CVE-1999-0087 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in AIX telnet can freeze a system and prevent users from accessing the server. | |||||
| CVE-1999-0075 | 1 Washington University | 1 Wu-ftpd | 2008-09-09 | 5.0 MEDIUM | N/A |
| PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password. | |||||
| CVE-1999-0127 | 1 Hp | 1 Hp-ux | 2008-09-09 | 7.2 HIGH | N/A |
| swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access. | |||||
| CVE-1999-0126 | 1 Xfree86 Project | 1 Xfree86 | 2008-09-09 | 7.2 HIGH | N/A |
| SGI IRIX buffer overflow in xterm and Xaw allows root access. | |||||
| CVE-1999-0057 | 5 Eric Allman, Freebsd, Hp and 2 more | 7 Vacation, Freebsd, Hp-ux and 4 more | 2008-09-09 | 7.5 HIGH | N/A |
| Vacation program allows command execution by remote users through a sendmail command. | |||||
| CVE-1999-0187 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0022. Reason: This candidate is a duplicate of CVE-1999-0022. Notes: All CVE users should reference CVE-1999-0022 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0171 | 1 Linux | 1 Linux Kernel | 2008-09-09 | 2.1 LOW | N/A |
| Denial of service in syslog by sending it a large number of superfluous messages. | |||||
| CVE-1999-0172 | 1 Matt Wright | 1 Formmail | 2008-09-09 | 7.5 HIGH | N/A |
| FormMail CGI program allows remote execution of commands. | |||||
| CVE-1999-0148 | 1 Sgi | 1 Irix | 2008-09-09 | 7.5 HIGH | N/A |
| The handler CGI program in IRIX allows arbitrary command execution. | |||||
| CVE-1999-0173 | 1 Matt Wright | 1 Formmail | 2008-09-09 | 5.0 MEDIUM | N/A |
| FormMail CGI program can be used by web servers other than the host server that the program resides on. | |||||
| CVE-1999-0047 | 3 Bsdi, Caldera, Eric Allman | 3 Bsd Os, Openlinux, Sendmail | 2008-09-09 | 10.0 HIGH | N/A |
| MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. | |||||
| CVE-1999-0028 | 1 Sgi | 1 Irix | 2008-09-09 | 7.2 HIGH | N/A |
| root privileges via buffer overflow in login/scheme command on SGI IRIX systems. | |||||
| CVE-1999-0073 | 2 Digital, Sgi | 3 Osf 1, Unix, Irix | 2008-09-09 | 10.0 HIGH | N/A |
| Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access. | |||||
| CVE-1999-0026 | 1 Sgi | 1 Irix | 2008-09-09 | 4.6 MEDIUM | N/A |
| root privileges via buffer overflow in pset command on SGI IRIX systems. | |||||
| CVE-1999-0174 | 1 Netscape | 1 Communicator | 2008-09-09 | 6.4 MEDIUM | N/A |
| The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-1999-0045 | 2 Apache, Netscape | 4 Http Server, Commerce Server, Communications Server and 1 more | 2008-09-09 | 7.5 HIGH | N/A |
| List of arbitrary files on Web host via nph-test-cgi script. | |||||
| CVE-1999-0175 | 1 Novell | 1 Web Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server. | |||||
| CVE-1999-0117 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| AIX passwd allows local users to gain root access. | |||||
| CVE-1999-0044 | 1 Sgi | 1 Irix | 2008-09-09 | 7.2 HIGH | N/A |
| fsdump command in IRIX allows local users to obtain root access by modifying sensitive files. | |||||
| CVE-1999-0072 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in AIX xdat gives root access to local users. | |||||
| CVE-1999-0116 | 1 Ibm | 2 Aix, Sng | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. | |||||
| CVE-1999-0186 | 1 Sun | 1 Solaris | 2008-09-09 | 10.0 HIGH | N/A |
| In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters. | |||||
| CVE-1999-0060 | 1 Lucent | 3 Ascend Max Router, Ascend Pipeline Router, Ascend Tnt Router | 2008-09-09 | 5.0 MEDIUM | N/A |
| Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool. | |||||
| CVE-1999-0058 | 1 Php | 1 Php | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in PHP cgi program, php.cgi allows shell access. | |||||
| CVE-1999-0012 | 2 Microsoft, Netscape | 5 Frontpage, Internet Information Server, Personal Web Server and 2 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names. | |||||
| CVE-1999-0030 | 1 Sgi | 1 Irix | 2008-09-09 | 7.2 HIGH | N/A |
| root privileges via buffer overflow in xlock command on SGI IRIX systems. | |||||
| CVE-1999-0071 | 1 Apache | 1 Http Server | 2008-09-09 | 7.5 HIGH | N/A |
| Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. | |||||
| CVE-1999-0006 | 1 Qualcomm | 1 Qpopper | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command. | |||||
| CVE-1999-0106 | 2008-09-09 | 2.1 LOW | N/A | ||
| Finger redirection allows finger bombs. | |||||
| CVE-1999-0029 | 1 Sgi | 1 Irix | 2008-09-09 | 7.2 HIGH | N/A |
| root privileges via buffer overflow in ordist command on SGI IRIX systems. | |||||
| CVE-1999-0128 | 5 Digital, Ibm, Linux and 2 more | 9 Osf 1, Aix, Sng and 6 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. | |||||
| CVE-1999-0105 | 2008-09-09 | 2.1 LOW | N/A | ||
| finger allows recursive searches by using a long string of @ symbols. | |||||
| CVE-1999-0102 | 1 Seattle Lab Software | 1 Slmail | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. | |||||
| CVE-1999-0101 | 1 Ibm | 1 Aix | 2008-09-09 | 10.0 HIGH | N/A |
| Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names. | |||||
| CVE-1999-0147 | 1 University Of Arizona | 2 Glimpse Http, Webglimpse | 2008-09-09 | 7.5 HIGH | N/A |
| The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands. | |||||
| CVE-1999-0153 | 2 Microsoft, Sco | 4 Windows 2000, Windows 95, Windows Nt and 1 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | |||||
| CVE-1999-0113 | 1 Ibm | 1 Aix | 2008-09-09 | 10.0 HIGH | N/A |
| Some implementations of rlogin allow root access if given a -froot parameter. | |||||
| CVE-1999-0182 | 1 Samba | 1 Samba | 2008-09-09 | 10.0 HIGH | N/A |
| Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. | |||||
| CVE-1999-0124 | 1 University Of Minnesota | 1 Gopherd | 2008-09-09 | 10.0 HIGH | N/A |
| Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. | |||||
| CVE-1999-0005 | 2 Netscape, University Of Washington | 2 Messaging Server, Imap | 2008-09-09 | 10.0 HIGH | N/A |
| Arbitrary command execution via IMAP buffer overflow in authenticate command. | |||||
| CVE-1999-0155 | 1 Aladdin Enterprises | 1 Ghostscript | 2008-09-09 | 7.5 HIGH | N/A |
| The ghostscript command with the -dSAFER option allows remote attackers to execute commands. | |||||
| CVE-1999-0081 | 1 Washington University | 1 Wu-ftpd | 2008-09-09 | 5.0 MEDIUM | N/A |
| wu-ftp allows files to be overwritten via the rnfr command. | |||||
| CVE-1999-0137 | 1 Fred N. Van Kempen | 1 Dip | 2008-09-09 | 7.2 HIGH | N/A |
| The dip program on many Linux systems allows local users to gain root access via a buffer overflow. | |||||
| CVE-1999-0083 | 1 Sgi | 1 Irix | 2008-09-09 | 5.0 MEDIUM | N/A |
| getcwd() file descriptor leak in FTP. | |||||
| CVE-1999-0142 | 2 Netscape, Sun | 2 Navigator, Java | 2008-09-09 | 7.5 HIGH | N/A |
| The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. | |||||
