-
CVE-1999-0869
•
published on January 4, 2000
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
-
CVE-1999-0892
•
published on January 4, 2000
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
-
CVE-1999-0901
•
published on January 4, 2000
ypserv allows a local user to modify the GECOS and login shells of other users.
-
CVE-1999-0902
•
published on January 4, 2000
ypserv allows local administrators to modify password tables.
-
CVE-1999-0914
•
published on January 4, 2000
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
-
CVE-1999-0917
•
published on January 4, 2000
The Preloader ActiveX control used by Internet Explorer allows remote attackers to read arbitrary files.
-
CVE-1999-0934
•
published on January 4, 2000
classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters.
-
CVE-1999-0937
•
published on January 4, 2000
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable.
-
CVE-1999-0938
•
published on January 4, 2000
MBone SDR Package allows remote attackers to execute commands via shell metacharacters in Session Initiation Protocol (SIP) messages.
-
CVE-1999-0940
•
published on January 4, 2000
Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages.
-
CVE-1999-0962
•
published on January 4, 2000
Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option.
-
CVE-1999-0967
•
published on January 4, 2000
Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.
-
CVE-1999-0969
•
published on January 4, 2000
The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork.
-
CVE-1999-0972
•
published on January 4, 2000
Buffer overflow in Xshipwars xsw program.
-
CVE-1999-0978
•
published on January 4, 2000
htdig allows remote attackers to execute commands via filenames with shell metacharacters.
-
CVE-1999-0804
•
published on January 4, 2000
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
-
CVE-1999-0809
•
published on January 4, 2000
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed".
-
CVE-1999-0814
•
published on January 4, 2000
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
-
CVE-1999-0861
•
published on January 4, 2000
Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext.
-
CVE-1999-0876
•
published on January 4, 2000
Buffer overflow in Internet Explorer 4.0 via EMBED tag.