Total
29099 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1028 | 1 Symantec | 1 Pcanywhere | 2024-08-01 | N/A |
| Symantec pcAnywhere 8.0 allows remote attackers to cause a denial of service (CPU utilization) via a large amount of data to port 5631. | ||||
| CVE-1999-1053 | 2 Apache, Matt Wright | 2 Http Server, Matt Wright Guestbook | 2024-08-01 | N/A |
| guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->". | ||||
| CVE-1999-1044 | 1 Digital | 1 Unix | 2024-08-01 | N/A |
| Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges. | ||||
| CVE-1999-1051 | 1 Matt Wright | 1 Formhandler.cgi | 2024-08-01 | N/A |
| Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter. | ||||
| CVE-1999-1006 | 1 Novell | 1 Groupwise | 2024-08-01 | N/A |
| Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter. | ||||
| CVE-1999-1041 | 1 Sco | 2 Openserver, Unix | 2024-08-01 | N/A |
| Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file. | ||||
| CVE-1999-1038 | 1 Tamu | 1 Tiger | 2024-08-01 | N/A |
| Tiger 2.2.3 allows local users to overwrite arbitrary files via a symlink attack on various temporary files in Tiger's default working directory, as defined by the WORKDIR variable. | ||||
| CVE-1999-1024 | 1 Lbl | 1 Tcpdump | 2024-08-01 | N/A |
| ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet with a zero length header, which causes an infinite loop and core dump when tcpdump prints the packet. | ||||
| CVE-1999-1014 | 1 Sun | 2 Solaris, Sunos | 2024-08-01 | N/A |
| Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument. | ||||
| CVE-1999-0892 | 1 Netscape | 1 Communicator | 2024-08-01 | N/A |
| Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font. | ||||
| CVE-1999-1029 | 1 Ssh | 1 Ssh2 | 2024-08-01 | N/A |
| SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs. | ||||
| CVE-1999-1019 | 1 Cabletron | 1 Spectrum Enterprise Manager | 2024-08-01 | N/A |
| SpectroSERVER in Cabletron Spectrum Enterprise Manager 5.0 installs a directory tree with insecure permissions, which allows local users to replace a privileged executable (processd) with a Trojan horse, facilitating a root or Administrator compromise. | ||||
| CVE-1999-1046 | 1 Ipswitch | 1 Imail | 2024-08-01 | N/A |
| Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 8181. | ||||
| CVE-1999-0969 | 1 Microsoft | 1 Windows Nt | 2024-08-01 | N/A |
| The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork. | ||||
| CVE-1999-1023 | 1 Sun | 1 Sunos | 2024-08-01 | N/A |
| useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired. | ||||
| CVE-1999-1017 | 1 Seattle Lab Software | 1 Emurl | 2024-08-01 | N/A |
| Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. | ||||
| CVE-1999-1025 | 1 Sun | 2 Solaris, Sunos | 2024-08-01 | N/A |
| CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string. | ||||
| CVE-1999-0986 | 3 Debian, Linux, Redhat | 3 Debian Linux, Linux Kernel, Linux | 2024-08-01 | N/A |
| The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option. | ||||
| CVE-1999-1033 | 1 Microsoft | 1 Outlook Express | 2024-08-01 | N/A |
| Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to re-enter POP3 command mode and cause the POP3 session to hang. | ||||
| CVE-1999-0946 | 1 Yamaha | 1 Midiplug | 2024-08-01 | N/A |
| Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag. | ||||