-
CVE-2000-0082
•
published on February 4, 2000
WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML.
-
CVE-2000-0086
•
published on February 4, 2000
Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing.
-
CVE-2000-0067
•
published on February 4, 2000
CyberCash Merchant Connection Kit (MCK) allows local users to modify files via a symlink attack.
-
CVE-2000-0085
•
published on February 4, 2000
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC parameters in the IMG tag.
-
CVE-1999-0101
•
published on January 18, 2000
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.
-
CVE-1999-0259
•
published on January 18, 2000
cfingerd lists all users on a system via search.**@target.
-
CVE-1999-0694
•
published on January 18, 2000
Denial of service in AIX ptrace system call allows local users to crash the system.
-
CVE-1999-0708
•
published on January 18, 2000
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
-
CVE-1999-0683
•
published on January 18, 2000
Denial of service in Gauntlet Firewall via a malformed ICMP packet.
-
CVE-1999-0233
•
published on January 18, 2000
IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.
-
CVE-1999-0270
•
published on January 18, 2000
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools) allows remote attackers to read arbitrary files.
-
CVE-1999-0742
•
published on January 18, 2000
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.
-
CVE-1999-0743
•
published on January 18, 2000
Trn allows local users to overwrite other users' files via symlinks.
-
CVE-1999-0768
•
published on January 18, 2000
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.
-
CVE-1999-0834
•
published on January 18, 2000
Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.
-
CVE-1999-0899
•
published on January 18, 2000
The Windows NT 4.0 print spooler allows a local user to execute arbitrary commands due to inappropriate permissions that allow the user to specify an alternate print provider.
-
CVE-1999-0734
•
published on January 18, 2000
A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication.
-
CVE-1999-0753
•
published on January 18, 2000
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories.
-
CVE-1999-0770
•
published on January 18, 2000
Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.
-
CVE-1999-0811
•
published on January 18, 2000
Buffer overflow in Samba smbd program via a malformed message command.