Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-1056 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CVE users should reference CVE-1999-1395 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-1074 | 1 Webmin | 1 Webmin | 2008-09-09 | 7.5 HIGH | N/A |
| Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking. | |||||
| CVE-1999-1101 | 1 Kab Software | 1 Lydia | 2008-09-09 | 4.6 MEDIUM | N/A |
| Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges. | |||||
| CVE-1999-1108 | 2008-09-09 | N/A | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1107. Reason: This candidate is a duplicate of CVE-1999-1107. Notes: All CVE users should reference CVE-1999-1107 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |||||
| CVE-1999-0550 | 2008-09-09 | 7.5 HIGH | N/A | ||
| A router's routing tables can be obtained from arbitrary hosts. | |||||
| CVE-1999-0551 | 1 Hp | 1 Openmail | 2008-09-09 | 4.6 MEDIUM | N/A |
| HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests. | |||||
| CVE-1999-0566 | 1 Ibm | 1 Aix | 2008-09-09 | 5.0 MEDIUM | N/A |
| An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities. | |||||
| CVE-1999-0575 | 1 Microsoft | 1 Windows Nt | 2008-09-09 | 7.5 HIGH | N/A |
| A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking. | |||||
| CVE-1999-0576 | 1 Microsoft | 1 Windows Nt | 2008-09-09 | 7.5 HIGH | N/A |
| A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories. | |||||
| CVE-1999-0582 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 5.0 MEDIUM | N/A |
| A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc. | |||||
| CVE-1999-0585 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 2.1 LOW | N/A |
| A Windows NT administrator account has the default name of Administrator. | |||||
| CVE-1999-0595 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 2.1 LOW | N/A |
| A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded. | |||||
| CVE-1999-0612 | 2 Gnu, Microsoft | 4 Finger Service, Fingerd, Windows 2000 and 1 more | 2008-09-09 | 0.0 LOW | N/A |
| A version of finger is running that exposes valid user information to any entity on the network. | |||||
| CVE-1999-0626 | 1 Sun | 1 Rpc.ruserd | 2008-09-09 | 0.0 LOW | N/A |
| A version of rusers is running that exposes valid user information to any entity on the network. | |||||
| CVE-1999-0627 | 1 Ibm | 1 Aix | 2008-09-09 | 0.0 LOW | N/A |
| The rexd service is running, which uses weak authentication that can allow an attacker to execute commands. | |||||
| CVE-1999-0628 | 4 Freebsd, Ibm, Linux and 1 more | 4 Freebsd, Aix, Linux Kernel and 1 more | 2008-09-09 | 5.0 MEDIUM | N/A |
| The rwho/rwhod service is running, which exposes machine status and user information. | |||||
| CVE-1999-0667 | 1 Arp Protocol | 1 Arp Protocol | 2008-09-09 | 10.0 HIGH | N/A |
| The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service. | |||||
| CVE-1999-0671 | 1 Toxsoft | 1 Nextftp | 2008-09-09 | 5.1 MEDIUM | N/A |
| Buffer overflow in ToxSoft NextFTP client through CWD command. | |||||
| CVE-1999-0672 | 1 Fujitsu | 1 Chocoa | 2008-09-09 | 5.1 MEDIUM | N/A |
| Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics. | |||||
| CVE-1999-0673 | 1 Crear | 1 Almail32 | 2008-09-09 | 5.1 MEDIUM | N/A |
| Buffer overflow in ALMail32 POP3 client via From: or To: headers. | |||||
| CVE-1999-0675 | 1 Checkpoint | 1 Firewall-1 | 2008-09-09 | 5.0 MEDIUM | N/A |
| Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host. | |||||
| CVE-1999-0677 | 1 Ramp Networks | 2 Webramp 200i, Webramp M3 | 2008-09-09 | 7.5 HIGH | N/A |
| The WebRamp web administration utility has a default password. | |||||
| CVE-1999-0679 | 1 Hybrid Network | 1 Hybrid Ircd | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in hybrid-6 IRC server commonly used on EFnet allows remote attackers to execute commands via m_invite invite option. | |||||
| CVE-1999-0683 | 1 Network Associates | 1 Gauntlet Firewall | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Gauntlet Firewall via a malformed ICMP packet. | |||||
| CVE-1999-0684 | 1 Hp | 1 Sendmail | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Sendmail 8.8.6 in HPUX. | |||||
| CVE-1999-0685 | 1 Netscape | 1 Communicator | 2008-09-09 | 5.1 MEDIUM | N/A |
| Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. | |||||
| CVE-1999-0686 | 2 Hp, Netscape | 2 Hp-ux, Enterprise Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. | |||||
| CVE-1999-0688 | 1 Hp | 1 Hp-ux | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x. | |||||
| CVE-1999-0690 | 2 Cde, Hp | 2 Cde, Hp-ux | 2008-09-09 | 7.2 HIGH | N/A |
| HP CDE program includes the current directory in root's PATH variable. | |||||
| CVE-1999-0692 | 2 Cray, Sgi | 2 Unicos, Irix | 2008-09-09 | 10.0 HIGH | N/A |
| The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges. | |||||
| CVE-1999-0694 | 1 Ibm | 1 Aix | 2008-09-09 | 2.1 LOW | N/A |
| Denial of service in AIX ptrace system call allows local users to crash the system. | |||||
| CVE-1999-0695 | 1 Sybase | 1 Powerdynamo | 2008-09-09 | 5.0 MEDIUM | N/A |
| The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. (dot dot) attack. | |||||
| CVE-1999-0697 | 1 Sco | 1 Openserver | 2008-09-09 | 7.2 HIGH | N/A |
| SCO Doctor allows local users to gain root privileges through a Tools option. | |||||
| CVE-1999-0699 | 1 Bluestone | 1 Sapphire Web | 2008-09-09 | 7.5 HIGH | N/A |
| The Bluestone Sapphire web server allows session hijacking via easily guessable session IDs. | |||||
| CVE-1999-0703 | 3 Bsdi, Freebsd, Openbsd | 3 Bsd Os, Freebsd, Openbsd | 2008-09-09 | 3.6 LOW | N/A |
| OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices. | |||||
| CVE-1999-0704 | 3 Bsdi, Freebsd, Redhat | 3 Bsd Os, Freebsd, Linux | 2008-09-09 | 9.3 HIGH | N/A |
| Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others. | |||||
| CVE-1999-0705 | 2 Isc, Redhat | 2 Inn, Linux | 2008-09-09 | 7.5 HIGH | N/A |
| Buffer overflow in INN inews program. | |||||
| CVE-1999-0706 | 2 Isc, Redhat | 2 Inn, Linux | 2008-09-09 | 7.5 HIGH | N/A |
| Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables. | |||||
| CVE-1999-0707 | 1 Hp | 2 Hp-ux, Visualize Conference Ftp | 2008-09-09 | 7.5 HIGH | N/A |
| The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization. | |||||
| CVE-1999-0708 | 1 Infodrom | 1 Cfingerd | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field. | |||||
| CVE-1999-0712 | 1 Caldera | 2 Coas, Openlinux | 2008-09-09 | 2.1 LOW | N/A |
| A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable. | |||||
| CVE-1999-0714 | 1 Digital | 1 Unix | 2008-09-09 | 2.1 LOW | N/A |
| Vulnerability in Compaq Tru64 UNIX edauth command. | |||||
| CVE-1999-0719 | 1 Gnu | 1 Gnumeric | 2008-09-09 | 4.6 MEDIUM | N/A |
| The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code. | |||||
| CVE-1999-0720 | 1 Linux | 1 Linux Kernel | 2008-09-09 | 4.6 MEDIUM | N/A |
| The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users. | |||||
| CVE-1999-0722 | 1 Sun | 1 Cobalt Raq 2 | 2008-09-09 | 10.0 HIGH | N/A |
| The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages. | |||||
| CVE-1999-0724 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 4.6 MEDIUM | N/A |
| Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function. | |||||
| CVE-1999-0727 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 5.0 MEDIUM | N/A |
| A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted. | |||||
| CVE-1999-0729 | 1 Ibm | 1 Lotus Domino Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search request. | |||||
| CVE-1999-0733 | 1 Vmware | 1 Workstation | 2008-09-09 | 7.2 HIGH | N/A |
| Buffer overflow in VMWare 1.0.1 for Linux via a long HOME environmental variable. | |||||
| CVE-1999-0735 | 1 Kde | 1 K-mail | 2008-09-09 | 4.6 MEDIUM | N/A |
| KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. | |||||