-
CVE-1999-0412
•
published on September 29, 1999
In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.
-
CVE-1999-0417
•
published on September 29, 1999
64 bit Solaris 7 procfs allows local users to perform a denial of service.
-
CVE-1999-0422
•
published on September 29, 1999
In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set.
-
CVE-1999-0423
•
published on September 29, 1999
Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges.
-
CVE-1999-0425
•
published on September 29, 1999
talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes.
-
CVE-1999-0458
•
published on September 29, 1999
L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password information.
-
CVE-1999-0468
•
published on September 29, 1999
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component.
-
CVE-1999-0472
•
published on September 29, 1999
The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it.
-
CVE-1999-0474
•
published on September 29, 1999
The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory.
-
CVE-1999-0484
•
published on September 29, 1999
Buffer overflow in OpenBSD ping.
-
CVE-1999-0485
•
published on September 29, 1999
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD.
-
CVE-1999-0228
•
published on September 29, 1999
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
-
CVE-1999-0245
•
published on September 29, 1999
Some configurations of NIS+ in Linux allowed attackers to log in as the user "+".
-
CVE-1999-0260
•
published on September 29, 1999
The jj CGI program allows command execution via shell metacharacters.
-
CVE-1999-0262
•
published on September 29, 1999
Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
-
CVE-1999-0264
•
published on September 29, 1999
htmlscript CGI program allows remote read access to files.
-
CVE-1999-0265
•
published on September 29, 1999
ICMP redirect messages may crash or lock up a host.
-
CVE-1999-0273
•
published on September 29, 1999
Denial of service through Solaris 2.5.1 telnet by sending ^D characters.
-
CVE-1999-0278
•
published on September 29, 1999
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
-
CVE-1999-0281
•
published on September 29, 1999
Denial of service in IIS using long URLs.