Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-0455 | 1 Allaire | 1 Coldfusion Server | 2008-09-09 | 7.5 HIGH | N/A |
| The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly. | |||||
| CVE-1999-0457 | 1 Debian | 1 Debian Linux | 2008-09-09 | 7.2 HIGH | N/A |
| Linux ftpwatch program allows local users to gain root privileges. | |||||
| CVE-1999-0458 | 1 L0pht | 1 L0phtcrack | 2008-09-09 | 2.1 LOW | N/A |
| L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password information. | |||||
| CVE-1999-0459 | 2008-09-09 | 4.6 MEDIUM | N/A | ||
| Local users can perform a denial of service in Alpha Linux, using MILO to force a reboot. | |||||
| CVE-1999-0461 | 2 Linux, Sgi | 2 Linux Kernel, Irix | 2008-09-09 | 10.0 HIGH | N/A |
| Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address. | |||||
| CVE-1999-0462 | 1 Suse | 1 Suse Linux | 2008-09-09 | 7.2 HIGH | N/A |
| suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy disk. | |||||
| CVE-1999-0463 | 1 L0pht | 1 L0phtcrack | 2008-09-09 | 5.0 MEDIUM | N/A |
| Remote attackers can perform a denial of service using IRIX fcagent. | |||||
| CVE-1999-0466 | 1 Netbsd | 1 Netbsd | 2008-09-09 | 7.2 HIGH | N/A |
| The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. | |||||
| CVE-1999-0467 | 1 Webcom | 1 Cgi Guestbook | 2008-09-09 | 5.0 MEDIUM | N/A |
| The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter. | |||||
| CVE-1999-0470 | 1 Novell | 1 Netware | 2008-09-09 | 5.0 MEDIUM | N/A |
| A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. | |||||
| CVE-1999-0471 | 1 Winroute | 1 Winroute | 2008-09-09 | 5.0 MEDIUM | N/A |
| The remote proxy server in Winroute allows a remote attacker to reconfigure the proxy without authentication through the "cancel" button. | |||||
| CVE-1999-0472 | 2 Network Appliance, Snmp | 2 Netcache, Snmp | 2008-09-09 | 5.0 MEDIUM | N/A |
| The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. | |||||
| CVE-1999-0473 | 1 Andrew Tridgell | 1 Rsync | 2008-09-09 | 2.1 LOW | N/A |
| The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred. | |||||
| CVE-1999-0474 | 1 Mirabilis | 1 Icq | 2008-09-09 | 5.0 MEDIUM | N/A |
| The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory. | |||||
| CVE-1999-0475 | 1 Procmail | 1 Procmail | 2008-09-09 | 1.2 LOW | N/A |
| A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail. | |||||
| CVE-1999-0476 | 1 Sco | 1 Openserver | 2008-09-09 | 7.2 HIGH | N/A |
| A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user. | |||||
| CVE-1999-0478 | 1 Sendmail | 1 Sendmail | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in HP-UX sendmail 8.8.6 related to accepting connections. | |||||
| CVE-1999-0479 | 2 Hp, Netscape | 2 Hp-ux, Enterprise Server | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. | |||||
| CVE-1999-0480 | 1 Midnight Commander | 1 Midnight Commander | 2008-09-09 | 2.1 LOW | N/A |
| Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack. | |||||
| CVE-1999-0481 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in "poll" in OpenBSD. | |||||
| CVE-1999-0482 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 5.0 MEDIUM | N/A |
| OpenBSD kernel crash through TSS handling, as caused by the crashme program. | |||||
| CVE-1999-0483 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 2.1 LOW | N/A |
| OpenBSD crash using nlink value in FFS and EXT2FS filesystems. | |||||
| CVE-1999-0484 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 2.1 LOW | N/A |
| Buffer overflow in OpenBSD ping. | |||||
| CVE-1999-0485 | 1 Openbsd | 1 Openbsd | 2008-09-09 | 2.6 LOW | N/A |
| Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD. | |||||
| CVE-1999-0486 | 1 Aol | 1 Instant Messenger | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash. | |||||
| CVE-1999-0494 | 1 Wingate | 1 Wingate | 2008-09-09 | 5.0 MEDIUM | N/A |
| Denial of service in WinGate proxy through a buffer overflow in POP3. | |||||
| CVE-1999-0498 | 2008-09-09 | 10.0 HIGH | N/A | ||
| TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files. | |||||
| CVE-1999-0499 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.5 HIGH | N/A |
| NETBIOS share information may be published through SNMP registry keys in NT. | |||||
| CVE-1999-0501 | 2008-09-09 | 4.6 MEDIUM | N/A | ||
| A Unix account has a guessable password. | |||||
| CVE-1999-0503 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.2 HIGH | N/A |
| A Windows NT local user or administrator account has a guessable password. | |||||
| CVE-1999-0504 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.5 HIGH | N/A |
| A Windows NT local user or administrator account has a default, null, blank, or missing password. | |||||
| CVE-1999-0505 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.2 HIGH | N/A |
| A Windows NT domain user or administrator account has a guessable password. | |||||
| CVE-1999-0506 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.2 HIGH | N/A |
| A Windows NT domain user or administrator account has a default, null, blank, or missing password. | |||||
| CVE-1999-0507 | 2008-09-09 | 7.5 HIGH | N/A | ||
| An account on a router, firewall, or other network device has a guessable password. | |||||
| CVE-1999-0508 | 2008-09-09 | 4.6 MEDIUM | N/A | ||
| An account on a router, firewall, or other network device has a default, null, blank, or missing password. | |||||
| CVE-1999-0510 | 2008-09-09 | 7.5 HIGH | N/A | ||
| A router or firewall allows source routed packets from arbitrary hosts. | |||||
| CVE-1999-0511 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 7.5 HIGH | N/A |
| IP forwarding is enabled on a machine which is not a router or firewall. | |||||
| CVE-1999-0514 | 2008-09-09 | 5.0 MEDIUM | N/A | ||
| UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target. | |||||
| CVE-1999-0516 | 2008-09-09 | 7.5 HIGH | N/A | ||
| An SNMP community name is guessable. | |||||
| CVE-1999-0518 | 1 Microsoft | 1 Windows 95 | 2008-09-09 | 7.5 HIGH | N/A |
| A NETBIOS/SMB share password is guessable. | |||||
| CVE-1999-0519 | 1 Microsoft | 4 Outlook, Windows 2000, Windows 95 and 1 more | 2008-09-09 | 7.5 HIGH | N/A |
| A NETBIOS/SMB share password is the default, null, or missing. | |||||
| CVE-1999-0521 | 2008-09-09 | 7.2 HIGH | N/A | ||
| An NIS domain name is easily guessable. | |||||
| CVE-1999-0522 | 2008-09-09 | 7.2 HIGH | N/A | ||
| The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate. | |||||
| CVE-1999-0526 | 1 X.org | 1 X11 | 2008-09-09 | 10.0 HIGH | N/A |
| An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server. | |||||
| CVE-1999-0532 | 2008-09-09 | 0.0 LOW | N/A | ||
| A DNS server allows zone transfers. | |||||
| CVE-1999-0533 | 2008-09-09 | 7.5 HIGH | N/A | ||
| A DNS server allows inverse queries. | |||||
| CVE-1999-0534 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 4.6 MEDIUM | N/A |
| A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single Process, Remote Shutdown, Replace Process Token, Restore, System Environment, Take Ownership, or Unsolicited Input. | |||||
| CVE-1999-0535 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2008-09-09 | 10.0 HIGH | N/A |
| A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness. | |||||
| CVE-1999-0541 | 2008-09-09 | 7.5 HIGH | N/A | ||
| A password for accessing a WWW URL is guessable. | |||||
| CVE-1999-0546 | 1 Microsoft | 1 Windows Nt | 2008-09-09 | 4.6 MEDIUM | N/A |
| The Windows NT guest account is enabled. | |||||