Vulnerability Details

CVE-1999-0352 • published on February 4, 2000 ControlIT 4.5 and earlier (aka Remotely Possible) has weak password encryption.

CVE-1999-0360 • published on February 4, 2000 MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely.

CVE-1999-0400 • published on February 4, 2000 Denial of service in Linux 2.2.0 running the ldd command on a core file.

CVE-1999-0426 • published on February 4, 2000 The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.

CVE-1999-0427 • published on February 4, 2000 Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names.

CVE-1999-0434 • published on February 4, 2000 XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

CVE-1999-0435 • published on February 4, 2000 MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM.

CVE-1999-0451 • published on February 4, 2000 Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port.

CVE-1999-0453 • published on February 4, 2000 An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).

CVE-1999-0460 • published on February 4, 2000 Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.

CVE-1999-0462 • published on February 4, 2000 suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy disk.

CVE-1999-0467 • published on February 4, 2000 The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.

CVE-1999-0469 • published on February 4, 2000 Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.

CVE-1999-0492 • published on February 4, 2000 The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses.

CVE-1999-0486 • published on February 4, 2000 Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash.

CVE-1999-0497 • published on February 4, 2000 Anonymous FTP is enabled.

CVE-1999-0499 • published on February 4, 2000 NETBIOS share information may be published through SNMP registry keys in NT.

CVE-1999-0501 • published on February 4, 2000 A Unix account has a guessable password.

CVE-1999-0502 • published on February 4, 2000 A Unix account has a default, null, blank, or missing password.

CVE-1999-0505 • published on February 4, 2000 A Windows NT domain user or administrator account has a guessable password.

Recent Vulnerabilities