Search
Total
27796 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-1290 | 1 Chris Matthee | 1 Nftp | 2017-10-10 | 5.1 MEDIUM | N/A |
| Buffer overflow in nftp FTP client version 1.40 allows remote malicious FTP servers to cause a denial of service, and possibly execute arbitrary commands, via a long response string. | |||||
| CVE-1999-1309 | 1 Sendmail | 1 Sendmail | 2017-10-10 | 7.2 HIGH | N/A |
| Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option. | |||||
| CVE-1999-1316 | 1 Microsoft | 1 Windows Nt | 2017-10-10 | 7.5 HIGH | N/A |
| Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker to guess. | |||||
| CVE-1999-1317 | 1 Microsoft | 1 Windows Nt | 2017-10-10 | 4.6 MEDIUM | N/A |
| Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device. | |||||
| CVE-1999-1324 | 1 Dec | 1 Dec Openvms Vax | 2017-10-10 | 7.5 HIGH | N/A |
| VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which makes it easier for attackers to conduct brute force password guessing. | |||||
| CVE-1999-1325 | 1 Vax Vms | 1 Sas System | 2017-10-10 | 7.2 HIGH | N/A |
| SAS System 5.18 on VAX/VMS is installed with insecure permissions for its directories and startup file, which allows local users to gain privileges. | |||||
| CVE-1999-1326 | 1 Washington University | 1 Wu-ftpd | 2017-10-10 | 5.0 MEDIUM | N/A |
| wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files. | |||||
| CVE-1999-1335 | 1 Redhat | 1 Linux | 2017-10-10 | 6.4 MEDIUM | N/A |
| snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information. | |||||
| CVE-1999-1542 | 1 Redhat | 1 Linux | 2017-10-10 | 10.0 HIGH | N/A |
| RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command. | |||||
| CVE-1999-1452 | 1 Microsoft | 1 Windows Nt | 2017-10-10 | 2.1 LOW | N/A |
| GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard of the user who has locked the workstation by pasting (CTRL-V) the contents into the username prompt. | |||||
| CVE-1999-1455 | 1 Microsoft | 1 Windows Nt | 2017-10-10 | 7.5 HIGH | N/A |
| RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specified in the .Rhosts file when a user comes from an authorized host, which could allow unauthorized users to access the service by logging in from an authorized host. | |||||
| CVE-1999-1456 | 1 Thttpd | 1 Thttpd Http Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename. | |||||
| CVE-1999-1476 | 1 Intel | 2 Pentium, Pentuim | 2017-10-10 | 2.1 LOW | N/A |
| A bug in Intel Pentium processor (MMX and Overdrive) allows local users to cause a denial of service (hang) in Intel-based operating systems such as Windows NT and Windows 95, via an invalid instruction, aka the "Invalid Operand with Locked CMPXCHG8B Instruction" problem. | |||||
| CVE-1999-1478 | 1 Microsoft | 1 Internet Information Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| The Sun HotSpot Performance Engine VM allows a remote attacker to cause a denial of service on any server running HotSpot via a URL that includes the [ character. | |||||
| CVE-1999-1481 | 1 National Science Foundation | 1 Squid Web Proxy | 2017-10-10 | 5.0 MEDIUM | N/A |
| Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair. | |||||
| CVE-1999-1486 | 1 Ibm | 1 Aix | 2017-10-10 | 1.2 LOW | N/A |
| sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack. | |||||
| CVE-1999-1494 | 1 Sgi | 1 Irix | 2017-10-10 | 2.1 LOW | N/A |
| colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument. | |||||
| CVE-1999-1507 | 1 Sun | 1 Sunos | 2017-10-10 | 7.2 HIGH | N/A |
| Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash. | |||||
| CVE-1999-1512 | 1 Amavis | 1 Virus Scanner | 2017-10-10 | 10.0 HIGH | N/A |
| The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field. | |||||
| CVE-1999-1520 | 1 Microsoft | 1 Site Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| A configuration problem in the Ad Server Sample directory (AdSamples) in Microsoft Site Server 3.0 allows an attacker to obtain the SITE.CSC file, which exposes sensitive SQL database information. | |||||
| CVE-1999-1535 | 1 Persits | 1 Aspupload | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument in the HTTP request. | |||||
| CVE-1999-1537 | 1 Microsoft | 1 Internet Information Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| IIS 3.x and 4.x does not distinguish between pages requiring encryption and those that do not, which allows remote attackers to cause a denial of service (resource exhaustion) via SSL requests to the HTTPS port for normally unencrypted files, which will cause IIS to perform extra work to send the files over SSL. | |||||
| CVE-1999-1556 | 1 Microsoft | 1 Sql Server | 2017-10-10 | 7.2 HIGH | N/A |
| Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the registry, which could allow local users to gain privileges by reading and decrypting the CmdExecAccount value. | |||||
| CVE-1999-1568 | 1 Ncftpd | 1 Ncftpd Ftp Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command. | |||||
| CVE-2000-0006 | 2 Linux, Paul Kranenburg | 2 Linux Kernel, Strace | 2017-10-10 | 2.6 LOW | N/A |
| strace allows local users to read arbitrary files via memory mapped file names. | |||||
| CVE-2000-0180 | 1 Generation Terrorists Designs And Concepts | 1 Sojourn | 2017-10-10 | 5.0 MEDIUM | N/A |
| Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2000-0243 | 1 Analogx | 1 Simpleserver Www | 2017-10-10 | 5.0 MEDIUM | N/A |
| AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin. | |||||
| CVE-2000-0245 | 1 Sgi | 1 Irix | 2017-10-10 | 10.0 HIGH | N/A |
| Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts. | |||||
| CVE-2000-0247 | 1 Gnqs | 1 Gnqs | 2017-10-10 | 7.2 HIGH | N/A |
| Unknown vulnerability in Generic-NQS (GNQS) allows local users to gain root privileges. | |||||
| CVE-2000-0252 | 1 Craig Dansie | 1 Dansie Shopping Cart | 2017-10-10 | 5.0 MEDIUM | N/A |
| The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable. | |||||
| CVE-2000-0290 | 1 4d | 1 Webstar Http Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in Webstar HTTP server allows remote attackers to cause a denial of service via a long GET request. | |||||
| CVE-2000-0298 | 1 Microsoft | 1 Windows 2000 | 2017-10-10 | 7.2 HIGH | N/A |
| The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories. | |||||
| CVE-2000-0372 | 1 Caldera | 1 Openlinux | 2017-10-10 | 7.2 HIGH | N/A |
| Vulnerability in Caldera rmt command in the dump package 0.4b4 allows a local user to gain root privileges. | |||||
| CVE-2000-0373 | 1 Kde | 1 Kvt | 2017-10-10 | 7.2 HIGH | N/A |
| Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges. | |||||
| CVE-2000-0374 | 1 Caldera | 1 Openlinux | 2017-10-10 | 10.0 HIGH | N/A |
| The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions. | |||||
| CVE-2000-0633 | 3 Conectiva, Mandrakesoft, Redhat | 3 Linux, Mandrake Linux, Linux | 2017-10-10 | 2.1 LOW | N/A |
| Vulnerability in Mandrake Linux usermode package allows local users to to reboot or halt the system. | |||||
| CVE-2000-0650 | 1 Network Associates | 2 Netshield, Virusscan | 2017-10-10 | 2.1 LOW | N/A |
| The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse. | |||||
| CVE-2000-0651 | 1 Novell | 1 Bordermanager | 2017-10-10 | 7.5 HIGH | N/A |
| The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim's machine. | |||||
| CVE-2000-0522 | 1 Rsa | 1 Ace Server | 2017-10-10 | 5.0 MEDIUM | N/A |
| RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash. | |||||
| CVE-2000-0470 | 1 Allegro | 1 Rom Pager | 2017-10-10 | 7.5 HIGH | N/A |
| Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication request. | |||||
| CVE-2000-0472 | 1 Isc | 1 Inn | 2017-10-10 | 3.6 LOW | N/A |
| Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID. | |||||
| CVE-2000-0474 | 1 Realnetworks | 1 Realserver | 2017-10-10 | 7.8 HIGH | N/A |
| Real Networks RealServer 7.x allows remote attackers to cause a denial of service via a malformed request for a page in the viewsource directory. | |||||
| CVE-2000-0477 | 1 Symantec | 1 Norton Antivirus | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in Norton Antivirus for Exchange (NavExchange) allows remote attackers to cause a denial of service via a .zip file that contains long file names. | |||||
| CVE-2000-0478 | 1 Symantec | 1 Norton Antivirus | 2017-10-10 | 5.0 MEDIUM | N/A |
| In some cases, Norton Antivirus for Exchange (NavExchange) enters a "fail-open" state which allows viruses to pass through the server. | |||||
| CVE-2000-0481 | 1 Kde | 1 K-mail | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name. | |||||
| CVE-2000-0482 | 1 Checkpoint | 1 Firewall-1 | 2017-10-10 | 5.0 MEDIUM | N/A |
| Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets. | |||||
| CVE-2000-0483 | 2 Redhat, Zope | 2 Linux Powertools, Zope | 2017-10-10 | 7.5 HIGH | N/A |
| The DocumentTemplate package in Zope 2.2 and earlier allows a remote attacker to modify DTMLDocuments or DTMLMethods without authorization. | |||||
| CVE-2000-0486 | 1 Cisco | 2 Ios, Tacacs\+ | 2017-10-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field. | |||||
| CVE-2000-0488 | 1 Ithouse | 1 Ithouse Mail Server | 2017-10-10 | 10.0 HIGH | N/A |
| Buffer overflow in ITHouse mail server 1.04 allows remote attackers to execute arbitrary commands via a long RCPT TO mail command. | |||||
| CVE-2000-0489 | 3 Freebsd, Netbsd, Openbsd | 3 Freebsd, Netbsd, Openbsd | 2017-10-10 | 2.1 LOW | N/A |
| FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers. | |||||