Full List

Search

Recent Vulnerabilities

• CVE-1999-1129 • published on September 12, 2001 Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
• CVE-1999-1130 • published on September 12, 2001 Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-demo1.pat pattern file.
• CVE-1999-1133 • published on September 12, 2001 HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users.
• CVE-1999-1134 • published on September 12, 2001 Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.
• CVE-1999-1152 • published on September 12, 2001 Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force attack.
• CVE-1999-1155 • published on September 12, 2001 LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
• CVE-1999-1164 • published on September 12, 2001 Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang.
• CVE-1999-1169 • published on September 12, 2001 nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets.
• CVE-1999-1171 • published on September 12, 2001 IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.
• CVE-1999-1172 • published on September 12, 2001 By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared.
• CVE-1999-1174 • published on September 12, 2001 ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power down, manually replacing the known disk with the target disk, and using the known password to access the target disk.
• CVE-1999-1179 • published on September 12, 2001 Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands.
• CVE-1999-1149 • published on September 12, 2001 Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a long string to the FTP port.
• CVE-1999-1150 • published on September 12, 2001 Livingston Portmaster routers running ComOS use the same initial sequence number (ISN) for TCP connections, which allows remote attackers to conduct spoofing and hijack TCP sessions.
• CVE-1999-1153 • published on September 12, 2001 HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
• CVE-1999-1154 • published on September 12, 2001 LakeWeb Filemail CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
• CVE-1999-1158 • published on September 12, 2001 Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.
• CVE-1999-1168 • published on September 12, 2001 install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.
• CVE-1999-1184 • published on September 12, 2001 Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environmental variable.
• CVE-1999-1186 • published on September 12, 2001 rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter.