-
CVE-1999-0111
•
published on September 29, 1999
RIP v1 is susceptible to spoofing.
-
CVE-1999-0120
•
published on September 29, 1999
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
-
CVE-1999-0125
•
published on September 29, 1999
Buffer overflow in SGI IRIX mailx program.
-
CVE-1999-0129
•
published on September 29, 1999
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
-
CVE-1999-0136
•
published on September 29, 1999
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access.
-
CVE-1999-0137
•
published on September 29, 1999
The dip program on many Linux systems allows local users to gain root access via a buffer overflow.
-
CVE-1999-0138
•
published on September 29, 1999
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.
-
CVE-1999-0147
•
published on September 29, 1999
The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands.
-
CVE-1999-0152
•
published on September 29, 1999
The DG/UX finger daemon allows remote command execution through shell metacharacters.
-
CVE-1999-0160
•
published on September 29, 1999
Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.
-
CVE-1999-0162
•
published on September 29, 1999
The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.
-
CVE-1999-0166
•
published on September 29, 1999
NFS allows users to use a "cd .." command to access other directories besides the exported file system.
-
CVE-1999-0172
•
published on September 29, 1999
FormMail CGI program allows remote execution of commands.
-
CVE-1999-0174
•
published on September 29, 1999
The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.
-
CVE-1999-0177
•
published on September 29, 1999
The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs.
-
CVE-1999-0178
•
published on September 29, 1999
Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.
-
CVE-1999-0182
•
published on September 29, 1999
Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.
-
CVE-1999-0188
•
published on September 29, 1999
The passwd command in Solaris can be subjected to a denial of service.
-
CVE-1999-0194
•
published on September 29, 1999
Denial of service in in.comsat allows attackers to generate messages.
-
CVE-1999-0202
•
published on September 29, 1999
The GNU tar command, when used in FTP sessions, may allow an attacker to execute arbitrary commands.