Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-1467 | 1 Sun | 1 Sunos | 2017-12-19 | 10.0 HIGH | N/A |
| Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly related to the configuration of the nobody user. | |||||
| CVE-1999-1470 | 1 Eastman Software | 1 Work Management | 2017-12-19 | 4.6 MEDIUM | N/A |
| Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, which could allow local users to gain privileges. | |||||
| CVE-1999-1474 | 1 Microsoft | 1 Powerpoint | 2017-12-19 | 7.5 HIGH | N/A |
| PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer. | |||||
| CVE-1999-1477 | 2 Gnome, Mandrakesoft | 2 Gnome Libs, Mandrake Linux | 2017-12-19 | 7.2 HIGH | N/A |
| Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack. | |||||
| CVE-1999-1479 | 1 Matt Wright | 1 Textcounter | 2017-12-19 | 10.0 HIGH | N/A |
| The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell metacharacters. | |||||
| CVE-1999-1484 | 1 Microsoft | 1 Msn Setup Bulletin Board Services | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker to execute arbitrary commands via the methods (1) vAddNewsServer or (2) bIsNewsServerConfigured. | |||||
| CVE-1999-1485 | 1 Sgi | 1 Irix | 2017-12-19 | 6.4 MEDIUM | N/A |
| nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a possible denial of service by mounting the nsd virtual file system. | |||||
| CVE-1999-1492 | 1 Sgi | 1 Irix | 2017-12-19 | 7.2 HIGH | N/A |
| Vulnerability in (1) diskperf and (2) diskalign in IRIX 6.4 allows local attacker to create arbitrary root owned files, leading to root privileges. | |||||
| CVE-1999-1493 | 1 Hp | 1 Apollo Domain Os | 2017-12-19 | 10.0 HIGH | N/A |
| Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root privileges via insecure system calls, (1) pad_$dm_cmd and (2) pad_$def_pfk(). | |||||
| CVE-1999-1495 | 1 Suse | 1 Suse Linux | 2017-12-19 | 2.1 LOW | N/A |
| xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file. | |||||
| CVE-1999-1496 | 3 Debian, Redhat, Todd Miller | 3 Debian Linux, Linux, Sudo | 2017-12-19 | 2.1 LOW | N/A |
| Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist. | |||||
| CVE-1999-1510 | 1 Bisonware | 1 Bisonware Ftp Server | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands. | |||||
| CVE-1999-1511 | 1 Artisoft | 1 Xtramail | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflows in Xtramail 1.11 allow attackers to cause a denial of service (crash) and possibly execute arbitrary commands via (1) a long PASS command in the POP3 service, (2) a long HELO command in the SMTP service, or (3) a long user name in the Control Service. | |||||
| CVE-1999-1514 | 1 Celtech Software | 1 Expressfs | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long USER command. | |||||
| CVE-1999-1515 | 1 Tenfour | 1 Tfs Gateway | 2017-12-19 | 5.0 MEDIUM | N/A |
| A non-default configuration in TenFour TFS Gateway 4.0 allows an attacker to cause a denial of service via messages with incorrect sender and recipient addresses, which causes the gateway to continuously try to return the message every 10 seconds. | |||||
| CVE-1999-1518 | 2 Freebsd, Netbsd | 2 Freebsd, Netbsd | 2017-12-19 | 5.0 MEDIUM | N/A |
| Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults. | |||||
| CVE-1999-1519 | 1 Gene6 | 1 G6 Ftp Server | 2017-12-19 | 5.0 MEDIUM | N/A |
| Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) via a long (1) user name or (2) password. | |||||
| CVE-1999-1521 | 1 Computalynx | 1 Cmail | 2017-12-19 | 10.0 HIGH | N/A |
| Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attacker to execute arbitrary code on the server. | |||||
| CVE-1999-1523 | 1 Sambar | 1 Sambar Server | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP GET request. | |||||
| CVE-1999-1525 | 1 Macromedia | 1 Shockwave Flash Plugin | 2017-12-19 | 5.1 MEDIUM | N/A |
| Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie. | |||||
| CVE-1999-1526 | 1 Macromedia | 1 Shockwave Flash Plugin | 2017-12-19 | 5.0 MEDIUM | N/A |
| Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. | |||||
| CVE-1999-1529 | 1 Trend Micro | 1 Interscan Viruswall | 2017-12-19 | 7.5 HIGH | N/A |
| A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary code. | |||||
| CVE-1999-1533 | 1 Trend Micro | 1 Interscan Viruswall | 2017-12-19 | 7.5 HIGH | N/A |
| Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) via a long password argument to the login.htm file in its HTTP service. | |||||
| CVE-1999-1539 | 1 Qpc Software | 2 Qvt Net, Qvt Term Plus | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long (1) user name or (2) password. | |||||
| CVE-1999-1540 | 1 Cactus Software | 1 Shell-lock | 2017-12-19 | 2.1 LOW | N/A |
| shell-lock in Cactus Software Shell Lock uses weak encryption (trivial encoding) which allows attackers to easily decrypt and obtain the source code. | |||||
| CVE-1999-1541 | 1 Cactus Software | 1 Shell-lock | 2017-12-19 | 7.2 HIGH | N/A |
| shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a temporary file. | |||||
| CVE-1999-1546 | 1 Ibm | 1 Navio Nc Browser | 2017-12-19 | 5.0 MEDIUM | N/A |
| netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable. | |||||
| CVE-1999-1551 | 1 Ipswitch | 1 Imail | 2017-12-19 | 5.0 MEDIUM | N/A |
| Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL. | |||||
| CVE-1999-1553 | 1 Xcmail | 1 Xcmail | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line. | |||||
| CVE-1999-1555 | 1 Cheyenne | 1 Inoculan Anti-virus Server | 2017-12-19 | 7.2 HIGH | N/A |
| Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2 creates an update directory with "EVERYONE FULL CONTROL" permissions, which allows local users to cause Inoculan's antivirus update feature to install a Trojan horse dll. | |||||
| CVE-1999-1557 | 1 Ipswitch | 1 Imail | 2017-12-19 | 5.0 MEDIUM | N/A |
| Buffer overflow in the login functions in IMAP server (imapd) in Ipswitch IMail 5.0 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long user name or (2) a long password. | |||||
| CVE-1999-1559 | 1 Alcatel | 1 Omniswitch | 2017-12-19 | 5.0 MEDIUM | N/A |
| Xylan OmniSwitch before 3.2.6 allows remote attackers to bypass the login prompt via a CTRL-D (control d) character, which locks other users out of the switch because it only supports one session at a time. | |||||
| CVE-1999-1560 | 1 Tamu | 1 Tiger | 2017-12-19 | 7.2 HIGH | N/A |
| Vulnerability in a script in Texas A&M University (TAMU) Tiger allows local users to execute arbitrary commands as the Tiger user, usually root. | |||||
| CVE-1999-1567 | 1 Seapine Software | 1 Testtrack | 2017-12-19 | 5.0 MEDIUM | N/A |
| Seapine Software TestTrack server allows a remote attacker to cause a denial of service (high CPU) via (1) TestTrackWeb.exe and (2) ttcgi.exe by connecting to port 99 and disconnecting without sending any data. | |||||
| CVE-1999-1569 | 1 Id Software | 1 Quake | 2017-12-19 | 5.0 MEDIUM | N/A |
| Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit. | |||||
| CVE-2000-0531 | 2 Caldera, Redhat | 3 Openlinux, Openlinux Eserver, Linux | 2017-12-19 | 2.1 LOW | N/A |
| Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets. | |||||
| CVE-2000-0543 | 1 Pgp | 1 Certificate Server | 2017-12-19 | 5.0 MEDIUM | N/A |
| The command port for PGP Certificate Server 2.5.0 and 2.5.1 allows remote attackers to cause a denial of service if their hostname does not have a reverse DNS entry and they connect to port 4000. | |||||
| CVE-2000-0696 | 1 Sun | 1 Solaris Answerbook2 | 2017-12-19 | 7.5 HIGH | N/A |
| The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script. | |||||
| CVE-2000-0772 | 1 Tumbleweed | 1 Messaging Management System | 2017-12-19 | 7.5 HIGH | N/A |
| The installation of Tumbleweed Messaging Management System (MMS) 4.6 and earlier (formerly Worldtalk Worldsecure) creates a default account "sa" with no password. | |||||
| CVE-2000-0812 | 1 Sun | 1 Java System Web Server | 2017-12-19 | 10.0 HIGH | N/A |
| The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag. | |||||
| CVE-2000-0826 | 1 Mobius | 1 Documentdirect For The Internet | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in ddicgi.exe program in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long GET request. | |||||
| CVE-2000-0827 | 1 Mobius | 1 Documentdirect For The Internet | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in the web authorization form of Mobius DocumentDirect for the Internet 1.2 allows remote attackers to cause a denial of service or execute arbitrary commands via a long username. | |||||
| CVE-2000-0828 | 1 Mobius | 1 Documentdirect For The Internet | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in ddicgi.exe in Mobius DocumentDirect for the Internet 1.2 allows remote attackers to execute arbitrary commands via a long User-Agent parameter. | |||||
| CVE-2000-0832 | 1 Oscar Nierstrasz | 1 Htgrep | 2017-12-19 | 5.0 MEDIUM | N/A |
| Htgrep CGI program allows remote attackers to read arbitrary files by specifying the full pathname in the hdr parameter. | |||||
| CVE-2000-0833 | 1 Jack De Winter | 1 Winsmtp | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in WinSMTP 1.06f and 2.X allows remote attackers to cause a denial of service via a long (1) USER or (2) HELO command. | |||||
| CVE-2000-0836 | 1 Broadgun Software | 1 Camshot Webcam | 2017-12-19 | 7.5 HIGH | N/A |
| Buffer overflow in CamShot WebCam Trial2.6 allows remote attackers to execute arbitrary commands via a long Authorization header. | |||||
| CVE-2000-0840 | 1 Davide Libenzi | 1 Xmail | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long USER command. | |||||
| CVE-2000-0841 | 1 Davide Libenzi | 1 Xmail | 2017-12-19 | 10.0 HIGH | N/A |
| Buffer overflow in XMail POP3 server before version 0.59 allows remote attackers to execute arbitrary commands via a long APOP command. | |||||
| CVE-2000-0857 | 1 Sebastian Kienzl | 1 Muh | 2017-12-19 | 7.5 HIGH | N/A |
| The logging capability in muh 2.05d IRC server does not properly cleanse user-injected format strings, which allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed nickname. | |||||
| CVE-2000-0866 | 1 Borland Software | 1 Interbase Superserver | 2017-12-19 | 2.1 LOW | N/A |
| Interbase 6 SuperServer for Linux allows an attacker to cause a denial of service via a query containing 0 bytes. | |||||