Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-1036 | 1 Cops | 1 Cops | 2016-10-17 | 7.2 HIGH | N/A |
| COPS 1.04 allows local users to overwrite or create arbitrary files via a symlink attack on temporary files in (1) res_diff, (2) ca.src, and (3) mail.chk. | |||||
| CVE-1999-1037 | 1 Coast | 1 Satan | 2016-10-17 | 7.2 HIGH | N/A |
| rex.satan in SATAN 1.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rex.$$ file. | |||||
| CVE-1999-1038 | 1 Tamu | 1 Tiger | 2016-10-17 | 7.2 HIGH | N/A |
| Tiger 2.2.3 allows local users to overwrite arbitrary files via a symlink attack on various temporary files in Tiger's default working directory, as defined by the WORKDIR variable. | |||||
| CVE-1999-1040 | 1 Sgi | 1 Irix | 2016-10-17 | 7.2 HIGH | N/A |
| Vulnerabilities in (1) ipxchk and (2) ipxlink in NetWare Client 1.0 on IRIX 6.3 and 6.4 allows local users to gain root access via a modified IFS environmental variable. | |||||
| CVE-1999-1041 | 1 Sco | 2 Openserver, Unix | 2016-10-17 | 7.2 HIGH | N/A |
| Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file. | |||||
| CVE-1999-1045 | 1 Realnetworks | 1 Realserver | 2016-10-17 | 7.8 HIGH | N/A |
| pnserver in RealServer 5.0 and earlier allows remote attackers to cause a denial of service by sending a short, malformed request. | |||||
| CVE-1999-1047 | 1 Bsdi | 1 Gauntlet | 2016-10-17 | 7.5 HIGH | N/A |
| When BSDI patches for Gauntlet 5.0 BSDI are installed in a particular order, Gauntlet allows remote attackers to bypass firewall access restrictions, and does not log the activities. | |||||
| CVE-1999-1052 | 1 Microsoft | 1 Frontpage | 2016-10-17 | 5.0 MEDIUM | N/A |
| Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which is world-readable and accessible in the document root, which allows remote attackers to read possibly sensitive information submitted by other users. | |||||
| CVE-1999-1054 | 1 Globetrotter | 1 Flexlm | 2016-10-17 | 5.0 MEDIUM | N/A |
| The default configuration of FLEXlm license manager 6.0d, and possibly other versions, allows remote attackers to shut down the server via the lmdown command. | |||||
| CVE-1999-1060 | 1 Tetrix | 1 Tetrinet | 2016-10-17 | 5.0 MEDIUM | N/A |
| Buffer overflow in Tetrix TetriNet daemon 1.13.16 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by connecting to port 31457 from a host with a long DNS hostname. | |||||
| CVE-1999-1064 | 1 Windowmaker | 1 Windowmaker | 2016-10-17 | 10.0 HIGH | N/A |
| Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]). | |||||
| CVE-1999-1065 | 1 Palm Pilot | 1 Hotsync Manager | 2016-10-17 | 7.5 HIGH | N/A |
| Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to port 14238 while the manager is in network mode. | |||||
| CVE-1999-1066 | 1 Sgi | 1 Quake 1 Server | 2016-10-17 | 5.0 MEDIUM | N/A |
| Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another host, by spoofing the connection request. | |||||
| CVE-1999-1067 | 1 Sgi | 1 Irix | 2016-10-17 | 5.0 MEDIUM | N/A |
| SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities. | |||||
| CVE-1999-1068 | 1 Oracle | 1 Http Server | 2016-10-17 | 5.0 MEDIUM | N/A |
| Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request. | |||||
| CVE-1999-1072 | 1 Excite | 1 Ews | 2016-10-17 | 7.2 HIGH | N/A |
| Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi. | |||||
| CVE-1999-1073 | 1 Excite | 1 Ews | 2016-10-17 | 7.2 HIGH | N/A |
| Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack. | |||||
| CVE-1999-0118 | 1 Ibm | 1 Aix | 2016-10-17 | 7.2 HIGH | N/A |
| AIX infod allows local users to gain root access through an X display. | |||||
| CVE-1999-0250 | 1 Dan Bernstein | 1 Qmail | 2016-10-17 | 10.0 HIGH | N/A |
| Denial of service in Qmail through long SMTP commands. | |||||
| CVE-1999-0283 | 2016-10-17 | 10.0 HIGH | N/A | ||
| The Java Web Server would allow remote users to obtain the source code for CGI programs. | |||||