-
CVE-1999-0743
•
published on January 18, 2000
Trn allows local users to overwrite other users' files via symlinks.
-
CVE-1999-0753
•
published on January 18, 2000
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories.
-
CVE-1999-0775
•
published on January 18, 2000
Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.
-
CVE-1999-0992
•
published on January 18, 2000
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP).
-
CVE-1999-0853
•
published on January 18, 2000
Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.
-
CVE-1999-0881
•
published on January 18, 2000
Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
-
CVE-1999-0994
•
published on January 18, 2000
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
-
CVE-1999-0999
•
published on January 18, 2000
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet.
-
CVE-1999-0834
•
published on January 18, 2000
Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.
-
CVE-1999-0847
•
published on January 18, 2000
Buffer overflow in free internet chess server (FICS) program, xboard.
-
CVE-1999-0955
•
published on January 18, 2000
Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.
-
CVE-1999-1001
•
published on January 18, 2000
Cisco Cache Engine allows a remote attacker to gain access via a null username and password.
-
CVE-1999-0101
•
published on January 18, 2000
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.
-
CVE-1999-0259
•
published on January 18, 2000
cfingerd lists all users on a system via search.**@target.
-
CVE-1999-0694
•
published on January 18, 2000
Denial of service in AIX ptrace system call allows local users to crash the system.
-
CVE-1999-0708
•
published on January 18, 2000
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
-
CVE-1999-0683
•
published on January 18, 2000
Denial of service in Gauntlet Firewall via a malformed ICMP packet.
-
CVE-1999-0233
•
published on January 18, 2000
IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.
-
CVE-1999-0270
•
published on January 18, 2000
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools) allows remote attackers to read arbitrary files.
-
CVE-1999-0742
•
published on January 18, 2000
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.