Vulnerability Details

CVE-1999-0322 • published on January 4, 2000 The open() function in FreeBSD allows local attackers to write to arbitrary files.

CVE-1999-0470 • published on January 4, 2000 A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.

CVE-1999-0682 • published on January 4, 2000 Microsoft Exchange 5.5 allows a remote attacker to relay email (i.e. spam) using encapsulated SMTP addresses, even if the anti-relaying features are enabled.

CVE-1999-0686 • published on January 4, 2000 Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.

CVE-1999-0688 • published on January 4, 2000 Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.

CVE-1999-0690 • published on January 4, 2000 HP CDE program includes the current directory in root's PATH variable.

CVE-1999-0703 • published on January 4, 2000 OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices.

CVE-1999-0705 • published on January 4, 2000 Buffer overflow in INN inews program.

CVE-1999-0707 • published on January 4, 2000 The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization.

CVE-1999-0713 • published on January 4, 2000 The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges.

CVE-1999-0723 • published on January 4, 2000 The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user input.

CVE-1999-0689 • published on January 4, 2000 The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.

CVE-1999-0692 • published on January 4, 2000 The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges.

CVE-1999-0695 • published on January 4, 2000 The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. (dot dot) attack.

CVE-1999-0702 • published on January 4, 2000 Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability.

CVE-1999-0704 • published on January 4, 2000 Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.

CVE-1999-0706 • published on January 4, 2000 Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables.

CVE-1999-0710 • published on January 4, 2000 The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.

CVE-1999-0714 • published on January 4, 2000 Vulnerability in Compaq Tru64 UNIX edauth command.

CVE-1999-0716 • published on January 4, 2000 Buffer overflow in Windows NT 4.0 help file utility via a malformed help file.

Recent Vulnerabilities