Full List

Search

Recent Vulnerabilities

• CVE-1999-0323 • published on June 2, 2000 FreeBSD mmap function allows users to modify append-only or immutable files.
• CVE-1999-0407 • published on June 2, 2000 By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
• CVE-1999-0491 • published on June 2, 2000 The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
• CVE-1999-0696 • published on June 2, 2000 Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).
• CVE-1999-0124 • published on June 2, 2000 Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon.
• CVE-1999-0118 • published on June 2, 2000 AIX infod allows local users to gain root access through an X display.
• CVE-1999-0210 • published on June 2, 2000 Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters.
• CVE-1999-0464 • published on June 2, 2000 Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.
• CVE-1999-0493 • published on June 2, 2000 rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
• CVE-1999-0668 • published on June 2, 2000 The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.
• CVE-1999-0719 • published on June 2, 2000 The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code.
• CVE-1999-0754 • published on June 2, 2000 The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable.
• CVE-1999-0819 • published on June 2, 2000 NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.
• CVE-1999-0836 • published on June 2, 2000 UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.
• CVE-1999-0865 • published on June 2, 2000 Buffer overflow in CommuniGatePro via a long string to the HTTP configuration port.
• CVE-1999-0838 • published on June 2, 2000 Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.
• CVE-1999-0854 • published on June 2, 2000 Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file.
• CVE-1999-0866 • published on June 2, 2000 Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
• CVE-1999-0832 • published on June 2, 2000 Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname.
• CVE-1999-0842 • published on June 2, 2000 Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack.