Search
Total
27796 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-0014 | 3 Cde, Hp, Ibm | 4 Cde, Hp-ux, Vvos and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Unauthorized privileged access or denial of service via dtappgather program in CDE. | |||||
| CVE-1999-0164 | 1 Sun | 1 Sunos | 2008-09-09 | 6.2 MEDIUM | N/A |
| A race condition in the Solaris ps command allows an attacker to overwrite critical files. | |||||
| CVE-1999-0163 | 1 Eric Allman | 1 Sendmail | 2008-09-09 | 7.2 HIGH | N/A |
| In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | |||||
| CVE-1999-0162 | 1 Cisco | 1 Ios | 2008-09-09 | 5.0 MEDIUM | N/A |
| The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering. | |||||
| CVE-1999-0161 | 1 Cisco | 1 Ios | 2008-09-09 | 7.5 HIGH | N/A |
| In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering. | |||||
| CVE-1999-0160 | 1 Cisco | 1 Ios | 2008-09-09 | 7.5 HIGH | N/A |
| Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections. | |||||
| CVE-1999-0159 | 1 Cisco | 1 Ios | 2008-09-09 | 5.0 MEDIUM | N/A |
| Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases. | |||||
| CVE-1999-0156 | 1 Washington University | 1 Wu-ftpd | 2008-09-09 | 4.6 MEDIUM | N/A |
| wu-ftpd FTP daemon allows any user and password combination. | |||||
| CVE-1999-0155 | 1 Aladdin Enterprises | 1 Ghostscript | 2008-09-09 | 7.5 HIGH | N/A |
| The ghostscript command with the -dSAFER option allows remote attackers to execute commands. | |||||
| CVE-1999-0153 | 2 Microsoft, Sco | 4 Windows 2000, Windows 95, Windows Nt and 1 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | |||||
| CVE-1999-0152 | 1 Data General | 1 Dg Ux | 2008-09-09 | 7.5 HIGH | N/A |
| The DG/UX finger daemon allows remote command execution through shell metacharacters. | |||||
| CVE-1999-0151 | 1 Satan | 1 Satan | 2008-09-09 | 7.6 HIGH | N/A |
| The SATAN session key may be disclosed if the user points the web browser to other sites, possibly allowing root access. | |||||
| CVE-1999-0150 | 1 Gnu | 1 Fingerd | 2008-09-09 | 7.5 HIGH | N/A |
| The Perl fingerd program allows arbitrary command execution from remote users. | |||||
| CVE-1999-0073 | 2 Digital, Sgi | 3 Osf 1, Unix, Irix | 2008-09-09 | 10.0 HIGH | N/A |
| Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access. | |||||
| CVE-1999-0072 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in AIX xdat gives root access to local users. | |||||
| CVE-1999-0148 | 1 Sgi | 1 Irix | 2008-09-09 | 7.5 HIGH | N/A |
| The handler CGI program in IRIX allows arbitrary command execution. | |||||
| CVE-1999-0147 | 1 University Of Arizona | 2 Glimpse Http, Webglimpse | 2008-09-09 | 7.5 HIGH | N/A |
| The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands. | |||||
| CVE-1999-0142 | 2 Netscape, Sun | 2 Navigator, Java | 2008-09-09 | 7.5 HIGH | N/A |
| The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. | |||||
| CVE-1999-0141 | 1 Netscape | 1 Navigator | 2008-09-09 | 3.7 LOW | N/A |
| Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet. | |||||
| CVE-1999-0138 | 7 Apple, Digital, Freebsd and 4 more | 9 A Ux, Osf 1, Freebsd and 6 more | 2008-09-09 | 7.2 HIGH | N/A |
| The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access. | |||||
| CVE-1999-0035 | 2 Gnu, Sgi | 2 Inet, Irix | 2008-09-09 | 5.1 MEDIUM | N/A |
| Race condition in signal handling routine in ftpd, allowing read/write arbitrary files. | |||||
| CVE-1999-0019 | 7 Data General, Ibm, Ncr and 4 more | 10 Dg Ux, Aix, Mp-ras and 7 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Delete or create a file via rpc.statd, due to invalid information. | |||||
| CVE-1999-0071 | 1 Apache | 1 Http Server | 2008-09-09 | 7.5 HIGH | N/A |
| Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. | |||||
| CVE-1999-0137 | 1 Fred N. Van Kempen | 1 Dip | 2008-09-09 | 7.2 HIGH | N/A |
| The dip program on many Linux systems allows local users to gain root access via a buffer overflow. | |||||
| CVE-1999-0063 | 1 Cisco | 1 Ios | 2008-09-09 | 5.0 MEDIUM | N/A |
| Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port. | |||||
| CVE-1999-0134 | 1 Sun | 1 Sunos | 2008-09-09 | 7.2 HIGH | N/A |
| vold in Solaris 2.x allows local users to gain root access. | |||||
| CVE-1999-0133 | 1 Adobe | 1 Framemaker | 2008-09-09 | 2.1 LOW | N/A |
| fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access. | |||||
| CVE-1999-0068 | 1 Php | 1 Php | 2008-09-09 | 7.5 HIGH | N/A |
| CGI PHP mylog script allows an attacker to read any file on the target server. | |||||
| CVE-1999-0131 | 8 Bsdi, Digital, Eric Allman and 5 more | 9 Bsd Os, Osf 1, Sendmail and 6 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | |||||
| CVE-1999-0130 | 7 Bsdi, Caldera, Eric Allman and 4 more | 7 Bsd Os, Network Desktop, Sendmail and 4 more | 2008-09-09 | 7.2 HIGH | N/A |
| Local users can start Sendmail in daemon mode and gain root privileges. | |||||
| CVE-1999-0128 | 5 Digital, Ibm, Linux and 2 more | 9 Osf 1, Aix, Sng and 6 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. | |||||
| CVE-1999-0127 | 1 Hp | 1 Hp-ux | 2008-09-09 | 7.2 HIGH | N/A |
| swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access. | |||||
| CVE-1999-0126 | 1 Xfree86 Project | 1 Xfree86 | 2008-09-09 | 7.2 HIGH | N/A |
| SGI IRIX buffer overflow in xterm and Xaw allows root access. | |||||
| CVE-1999-0124 | 1 University Of Minnesota | 1 Gopherd | 2008-09-09 | 10.0 HIGH | N/A |
| Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon. | |||||
| CVE-1999-0122 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in AIX lchangelv gives root access. | |||||
| CVE-1999-0037 | 2 Freebsd, Redhat | 2 Freebsd, Linux | 2008-09-09 | 7.5 HIGH | N/A |
| Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail. | |||||
| CVE-1999-0117 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| AIX passwd allows local users to gain root access. | |||||
| CVE-1999-0116 | 1 Ibm | 2 Aix, Sng | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. | |||||
| CVE-1999-0067 | 2 Apache, Ncsa | 2 Http Server, Ncsa Httpd | 2008-09-09 | 10.0 HIGH | N/A |
| phf CGI program allows remote command execution through shell metacharacters. | |||||
| CVE-1999-0066 | 1 John S. Roberts | 1 Anyform | 2008-09-09 | 7.5 HIGH | N/A |
| AnyForm CGI remote execution. | |||||
| CVE-1999-0064 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in AIX lquerylv program gives root access to local users. | |||||
| CVE-1999-0115 | 1 Ibm | 1 Aix | 2008-09-09 | 7.2 HIGH | N/A |
| AIX bugfiler program allows local users to gain root access. | |||||
| CVE-1999-0114 | 1 Elm Development Group | 1 Elm | 2008-09-09 | 4.6 MEDIUM | N/A |
| Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack. | |||||
| CVE-1999-0113 | 1 Ibm | 1 Aix | 2008-09-09 | 10.0 HIGH | N/A |
| Some implementations of rlogin allow root access if given a -froot parameter. | |||||
| CVE-1999-0111 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| RIP v1 is susceptible to spoofing. | |||||
| CVE-1999-0034 | 4 Bsdi, Larry Wall, Redhat and 1 more | 4 Bsd Os, Perl, Linux and 1 more | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in suidperl (sperl), Perl 4.x and 5.x. | |||||
| CVE-1999-0107 | 1 Apache | 1 Http Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. | |||||
| CVE-1999-0106 | 2008-09-09 | 2.1 LOW | N/A | ||
| Finger redirection allows finger bombs. | |||||
| CVE-1999-0062 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 7.2 HIGH | N/A |
| The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage. | |||||
| CVE-1999-0105 | 2008-09-09 | 2.1 LOW | N/A | ||
| finger allows recursive searches by using a long string of @ symbols. | |||||