-
CVE-1999-0878
•
published on January 4, 2000
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.
-
CVE-1999-0883
•
published on January 4, 2000
Zeus web server allows remote attackers to read arbitrary files by specifying the file name in an option to the search engine.
-
CVE-1999-0887
•
published on January 4, 2000
FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack.
-
CVE-1999-0894
•
published on January 4, 2000
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.
-
CVE-1999-0900
•
published on January 4, 2000
Buffer overflow in rpc.yppasswdd allows a local user to gain privileges via MD5 hash generation.
-
CVE-1999-0907
•
published on January 4, 2000
sccw allows local users to read arbitrary files.
-
CVE-1999-0933
•
published on January 4, 2000
TeamTrack web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
-
CVE-1999-0939
•
published on January 4, 2000
Denial of service in Debian IRC Epic/epic4 client via a long string.
-
CVE-1999-0979
•
published on January 4, 2000
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.
-
CVE-1999-0980
•
published on January 4, 2000
Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration request.
-
CVE-1999-0982
•
published on January 4, 2000
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
-
CVE-1999-0987
•
published on January 4, 2000
Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.
-
CVE-1999-0989
•
published on January 4, 2000
Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol.
-
CVE-1999-0991
•
published on January 4, 2000
Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name.
-
CVE-1999-0151
•
published on January 4, 2000
The SATAN session key may be disclosed if the user points the web browser to other sites, possibly allowing root access.
-
CVE-1999-0275
•
published on January 4, 2000
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
-
CVE-1999-0291
•
published on January 4, 2000
The WinGate proxy is installed without a password, which allows remote attackers to redirect connections without authentication.
-
CVE-1999-0318
•
published on January 4, 2000
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
-
CVE-1999-0212
•
published on January 4, 2000
Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.
-
CVE-1999-0408
•
published on January 4, 2000
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.