-
CVE-1999-0143
•
published on September 29, 1999
Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.
-
CVE-1999-0153
•
published on September 29, 1999
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
-
CVE-1999-0157
•
published on September 29, 1999
Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.
-
CVE-1999-0173
•
published on September 29, 1999
FormMail CGI program can be used by web servers other than the host server that the program resides on.
-
CVE-1999-0179
•
published on September 29, 1999
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
-
CVE-1999-0183
•
published on September 29, 1999
Linux implementations of TFTP would allow access to files outside the restricted directory.
-
CVE-1999-0184
•
published on September 29, 1999
When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records.
-
CVE-1999-0185
•
published on September 29, 1999
In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.
-
CVE-1999-0208
•
published on September 29, 1999
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
-
CVE-1999-0218
•
published on September 29, 1999
Livingston portmaster machines could be rebooted via a series of commands.
-
CVE-1999-0234
•
published on September 29, 1999
Bash treats any character with a value of 255 as a command separator.
-
CVE-1999-0239
•
published on September 29, 1999
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
-
CVE-1999-0256
•
published on September 29, 1999
Buffer overflow in War FTP allows remote execution of commands.
-
CVE-1999-0263
•
published on September 29, 1999
Solaris SUNWadmap can be exploited to obtain root access.
-
CVE-1999-0277
•
published on September 29, 1999
The WorkMan program can be used to overwrite any file to get root access.
-
CVE-1999-0005
•
published on September 29, 1999
Arbitrary command execution via IMAP buffer overflow in authenticate command.
-
CVE-1999-0008
•
published on September 29, 1999
Buffer overflow in NIS+, in Sun's rpc.nisd program.
-
CVE-1999-0016
•
published on September 29, 1999
Land IP denial of service.
-
CVE-1999-0017
•
published on September 29, 1999
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
-
CVE-1999-0021
•
published on September 29, 1999
Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program.