Total
29099 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1076 | 1 Apple | 1 Macos | 2024-08-01 | N/A |
| Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. | ||||
| CVE-1999-1063 | 1 Cdomain | 1 Cdomainfree | 2024-08-01 | N/A |
| CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the fqdn parameter. | ||||
| CVE-1999-1088 | 1 Hp | 1 Hp-ux | 2024-08-01 | N/A |
| Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges. | ||||
| CVE-1999-1115 | 1 Hp | 1 Apollo Domain Os | 2024-08-01 | N/A |
| Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh). | ||||
| CVE-1999-1090 | 1 Ncsa | 1 Telnet | 2024-08-01 | N/A |
| The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files. | ||||
| CVE-1999-1071 | 1 Excite | 1 Ews | 2024-08-01 | N/A |
| Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file. | ||||
| CVE-1999-1098 | 1 Bsd | 1 Bsd | 2024-08-01 | N/A |
| Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing. | ||||
| CVE-1999-1079 | 1 Ibm | 1 Aix | 2024-08-01 | N/A |
| Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. | ||||
| CVE-1999-1068 | 1 Oracle | 1 Http Server | 2024-08-01 | N/A |
| Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. | ||||
| CVE-1999-1072 | 1 Excite | 1 Ews | 2024-08-01 | N/A |
| Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi. | ||||
| CVE-1999-1057 | 1 Digital | 1 Vms | 2024-08-01 | N/A |
| VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command. | ||||
| CVE-1999-1094 | 1 Microsoft | 1 Internet Explorer | 2024-08-01 | N/A |
| Buffer overflow in Internet Explorer 4.01 and earlier allows remote attackers to execute arbitrary commands via a long URL with the "mk:" protocol, aka the "MK Overrun security issue." | ||||
| CVE-1999-1061 | 1 Hp | 1 Jetdirect | 2024-08-01 | N/A |
| HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect to the printer and change its IP address or disable logging. | ||||
| CVE-1999-1054 | 1 Globetrotter | 1 Flexlm | 2024-08-01 | N/A |
| The default configuration of FLEXlm license manager 6.0d, and possibly other versions, allows remote attackers to shut down the server via the lmdown command. | ||||
| CVE-1999-1075 | 1 Ibm | 1 Aix | 2024-08-01 | N/A |
| inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | ||||
| CVE-1999-1064 | 1 Windowmaker | 1 Windowmaker | 2024-08-01 | N/A |
| Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]). | ||||
| CVE-1999-1055 | 1 Microsoft | 1 Excel | 2024-08-01 | N/A |
| Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the CALL function to execute a malicious DLL, aka the Excel "CALL Vulnerability." | ||||
| CVE-1999-1062 | 1 Hp | 1 Jetdirect | 2024-08-01 | N/A |
| HP Laserjet printers with JetDirect cards, when configured with TCP/IP, allow remote attackers to bypass print filters by directly sending PostScript documents to TCP ports 9099 and 9100. | ||||
| CVE-1999-1065 | 1 Palm Pilot | 1 Hotsync Manager | 2024-08-01 | N/A |
| Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 14238 while the manager is in network mode. | ||||
| CVE-1999-1070 | 1 Xylogics | 1 Annex | 2024-08-01 | N/A |
| Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter. | ||||