Vulnerabilities (CVE)

CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0397 2005-10-20 10.0 HIGH N/A
The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.
CVE-1999-0539 2005-10-20 10.0 HIGH N/A
A trust relationship exists between two Unix hosts.
CVE-1999-0569 2005-10-20 10.0 HIGH N/A
A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file.
CVE-2003-0565 2005-10-20 5.0 MEDIUM N/A
Multiple vulnerabilities in multiple vendor implementations of the X.400 protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an X.400 message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite.
CVE-2001-0291 2005-10-20 10.0 HIGH N/A
Buffer overflow in post-query sample CGI program allows remote attackers to execute arbitrary commands via an HTTP POST request that contains at least 10001 parameters.
CVE-1999-0944 2005-10-20 10.0 HIGH N/A
IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections.
CVE-1999-0554 2005-10-20 10.0 HIGH N/A
NFS exports system-critical data to the world, e.g. / or a password file.
CVE-1999-0121 2005-10-20 7.2 HIGH N/A
Buffer overflow in dtaction command gives root access.
CVE-1999-0588 2005-10-20 7.5 HIGH N/A
A filter in a router or firewall allows unusual fragmented packets.
CVE-1999-0512 2005-10-20 10.0 HIGH N/A
A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.
CVE-2000-0889 2005-10-20 5.1 MEDIUM N/A
Two Sun security certificates have been compromised, which could allow attackers to insert malicious code such as applets and make it appear that it is signed by Sun.
CVE-1999-0599 2005-10-20 10.0 HIGH N/A
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.
CVE-1999-0548 2005-10-20 10.0 HIGH N/A
A superfluous NFS server is running, but it is not importing or exporting any file systems.
CVE-1999-0200 2005-10-20 10.0 HIGH N/A
Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password.
CVE-1999-0600 2005-10-20 10.0 HIGH N/A
A network intrusion detection system (IDS) does not verify the checksum on a packet.
CVE-1999-0452 2005-10-20 10.0 HIGH N/A
A service or application has a backdoor password that was placed there by the developer.
CVE-1999-0601 2005-10-20 10.0 HIGH N/A
A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.
CVE-1999-0602 2005-10-20 10.0 HIGH N/A
A network intrusion detection system (IDS) does not properly reassemble fragmented packets.
CVE-1999-0603 2005-10-20 10.0 HIGH N/A
In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc.
CVE-1999-0565 2005-10-20 10.0 HIGH N/A
A Sendmail alias allows input to be piped to a program.
CVE-1999-0465 2005-10-20 10.0 HIGH N/A
Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter.
CVE-1999-0936 2005-05-02 10.0 HIGH N/A
BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters.
CVE-1999-0935 2005-05-02 10.0 HIGH N/A
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.
CVE-1999-0937 2005-05-02 10.0 HIGH N/A
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable.