| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-1999-1000 | The web administration interface for Cisco Cache Engine allows remote attackers to view performance ... | | |
| CVE-1999-1001 | Cisco Cache Engine allows a remote attacker to gain access via a null username and password.... | | |
| CVE-1999-1002 | Netscape Navigator uses weak encryption for storing a user's Netscape mail password.... | | |
| CVE-1999-1003 | War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connect... | | |
| CVE-1999-1004 | Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a... | | |
| CVE-1999-1005 | Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions ... | | |
| CVE-1999-1006 | Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server ... | | |
| CVE-1999-1007 | Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via... | | |
| CVE-1999-1008 | xsoldier program allows local users to gain root access via a long argument.... | | |
| CVE-1999-1009 | The Disney Go Express Search allows remote attackers to access and modify search information for use... | | |
| CVE-1999-1010 | An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the serv... | | |
| CVE-1999-1011 | The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in II... | | |
| CVE-1999-1012 | SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remot... | | |
| CVE-1999-1013 | named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to ga... | E S | |
| CVE-1999-1014 | Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a l... | E S | |
| CVE-1999-1015 | Buffer overflow in Apple AppleShare Mail Server 5.0.3 on MacOS 8.1 and earlier allows a remote attac... | E | |
| CVE-1999-1016 | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Expr... | E | |
| CVE-1999-1017 | Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific direc... | S | |
| CVE-1999-1018 | IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the he... | S | |
| CVE-1999-1019 | SpectroSERVER in Cabletron Spectrum Enterprise Manager 5.0 installs a directory tree with insecure p... | S | |
| CVE-1999-1020 | The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for ... | E S | |
| CVE-1999-1021 | NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local ... | S | |
| CVE-1999-1022 | serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variabl... | E S | |
| CVE-1999-1023 | useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (ex... | S | |
| CVE-1999-1024 | ip_print procedure in Tcpdump 3.4a allows remote attackers to cause a denial of service via a packet... | E S | |
| CVE-1999-1025 | CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's co... | S | |
| CVE-1999-1026 | aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via ... | E | |
| CVE-1999-1027 | Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to g... | S | |
| CVE-1999-1028 | Symantec pcAnywhere 8.0 allows remote attackers to cause a denial of service (CPU utilization) via a... | E S | |
| CVE-1999-1029 | SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed... | S | |
| CVE-1999-1030 | counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via an HTTP request th... | E | |
| CVE-1999-1031 | counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via a long argument.... | | |
| CVE-1999-1032 | Vulnerability in LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 allows attackers to gain root ... | S | |
| CVE-1999-1033 | Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that conta... | E S | |
| CVE-1999-1034 | Vulnerability in login in AT&T System V Release 4 allows local users to gain privileges.... | S | |
| CVE-1999-1035 | IIS 3.0 and 4.0 on x86 and Alpha allows remote attackers to cause a denial of service (hang) via a m... | S | |
| CVE-1999-1036 | COPS 1.04 allows local users to overwrite or create arbitrary files via a symlink attack on temporar... | | |
| CVE-1999-1037 | rex.satan in SATAN 1.1.1 allows local users to overwrite arbitrary files via a symlink attack on the... | | |
| CVE-1999-1038 | Tiger 2.2.3 allows local users to overwrite arbitrary files via a symlink attack on various temporar... | | |
| CVE-1999-1039 | Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user... | S | |
| CVE-1999-1040 | Vulnerabilities in (1) ipxchk and (2) ipxlink in NetWare Client 1.0 on IRIX 6.3 and 6.4 allows local... | S | |
| CVE-1999-1041 | Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root... | S | |
| CVE-1999-1042 | Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which... | S | |
| CVE-1999-1043 | Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malfo... | S | |
| CVE-1999-1044 | Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local ... | | |
| CVE-1999-1045 | pnserver in RealServer 5.0 and earlier allows remote attackers to cause a denial of service by sendi... | S | |
| CVE-1999-1046 | Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and p... | E | |
| CVE-1999-1047 | When BSDI patches for Gauntlet 5.0 BSDI are installed in a particular order, Gauntlet allows remote ... | | |
| CVE-1999-1048 | Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges ... | E S | |
| CVE-1999-1049 | ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff t... | | |
| CVE-1999-1050 | Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to r... | E | |
| CVE-1999-1051 | Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used ... | E | |
| CVE-1999-1052 | Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which i... | | |
| CVE-1999-1053 | guestbook.pl cleanses user-inserted SSI commands by removing text between "" separator... | E S | |
| CVE-1999-1054 | The default configuration of FLEXlm license manager 6.0d, and possibly other versions, allows remote... | | |
| CVE-1999-1055 | Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow at... | | |
| CVE-1999-1056 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candida... | R | |
| CVE-1999-1057 | VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command.... | S | |
| CVE-1999-1058 | Buffer overflow in Vermillion FTP Daemon VFTPD 1.23 allows remote attackers to cause a denial of ser... | | |
| CVE-1999-1059 | Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote att... | S | |
| CVE-1999-1060 | Buffer overflow in Tetrix TetriNet daemon 1.13.16 allows remote attackers to cause a denial of servi... | E S | |
| CVE-1999-1061 | HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a ... | | |
| CVE-1999-1062 | HP Laserjet printers with JetDirect cards, when configured with TCP/IP, allow remote attackers to by... | | |
| CVE-1999-1063 | CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via she... | E | |
| CVE-1999-1064 | Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of se... | | |
| CVE-1999-1065 | Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service,... | | |
| CVE-1999-1066 | Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, wh... | | |
| CVE-1999-1067 | SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive ... | | |
| CVE-1999-1068 | Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a deni... | | |
| CVE-1999-1069 | Directory traversal vulnerability in carbo.dll in iCat Carbo Server 3.0.0 allows remote attackers to... | E | |
| CVE-1999-1070 | Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to ca... | | |
| CVE-1999-1071 | Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeabl... | | |
| CVE-1999-1072 | Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted pa... | | |
| CVE-1999-1073 | Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beg... | | |
| CVE-1999-1074 | Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid use... | S | |
| CVE-1999-1075 | inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also... | | |
| CVE-1999-1076 | Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessi... | E | |
| CVE-1999-1077 | Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled s... | E | |
| CVE-1999-1078 | WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote a... | | |
| CVE-1999-1079 | Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid pr... | S | |
| CVE-1999-1080 | rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentati... | | |
| CVE-1999-1081 | Vulnerability in files.pl script in Novell WebServer Examples Toolkit 2 allows remote attackers to r... | | |
| CVE-1999-1082 | Directory traversal vulnerability in Jana proxy web server 1.40 allows remote attackers to ready arb... | E | |
| CVE-1999-1083 | Directory traversal vulnerability in Jana proxy web server 1.45 allows remote attackers to ready arb... | E | |
| CVE-1999-1084 | The "AEDebug" registry key is installed with insecure permissions, which allows local users to modif... | E S | |
| CVE-1999-1085 | SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher F... | | |
| CVE-1999-1086 | Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote... | E S | |
| CVE-1999-1087 | Internet Explorer 4 treats a 32-bit number ("dotless IP address") in the a URL as the hostname inste... | S | |
| CVE-1999-1088 | Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges.... | S | |
| CVE-1999-1089 | Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via... | S | |
| CVE-1999-1090 | The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it do... | S | |
| CVE-1999-1091 | UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow sy... | | |
| CVE-1999-1092 | tin 1.40 creates the .tin directory with insecure permissions, which allows local users to read pass... | | |
| CVE-1999-1093 | Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer... | | |
| CVE-1999-1094 | Buffer overflow in Internet Explorer 4.01 and earlier allows remote attackers to execute arbitrary c... | S | |
| CVE-1999-1095 | sort creates temporary files and follows symbolic links, which allows local users to modify arbitrar... | | |
| CVE-1999-1096 | Buffer overflow in kscreensaver in KDE klock allows local users to gain root privileges via a long H... | | |
| CVE-1999-1097 | Microsoft NetMeeting 2.1 allows one client to read the contents of another client's clipboard via a ... | | |
| CVE-1999-1098 | Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attac... | S | |
| CVE-1999-1099 | Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that g... | | |
| CVE-1999-1100 | Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configura... | S | |
| CVE-1999-1101 | Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which ... | E | |
| CVE-1999-1102 | lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to... | E S | |
| CVE-1999-1103 | dxconsole in DEC OSF/1 3.2C and earlier allows local users to read arbitrary files by specifying the... | S | |
| CVE-1999-1104 | Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enab... | | |
| CVE-1999-1105 | Windows 95, when Remote Administration and File Sharing for NetWare Networks is enabled, creates a s... | S | |
| CVE-1999-1106 | Buffer overflow in kppp in KDE allows local users to gain root access via a long -c (account_name) c... | E | |
| CVE-1999-1107 | Buffer overflow in kppp in KDE allows local users to gain root access via a long PATH environmental ... | | |
| CVE-1999-1108 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1107. Reason: This candida... | R | |
| CVE-1999-1109 | Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of E... | | |
| CVE-1999-1110 | Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code w... | E S | |
| CVE-1999-1111 | Vulnerability in StackGuard before 1.21 allows remote attackers to bypass the Random and Terminator ... | | |
| CVE-1999-1112 | Buffer overflow in IrfanView32 3.07 and earlier allows attackers to execute arbitrary commands via a... | E S | |
| CVE-1999-1113 | Buffer overflow in Eudora Internet Mail Server (EIMS) 2.01 and earlier on MacOS systems allows remot... | | |
| CVE-1999-1114 | Buffer overflow in Korn Shell (ksh) suid_exec program on IRIX 6.x and earlier, and possibly other op... | E S | |
| CVE-1999-1115 | Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related t... | S | |
| CVE-1999-1116 | Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 all... | S | |
| CVE-1999-1117 | lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the... | S | |
| CVE-1999-1118 | ndd in Solaris 2.6 allows local users to cause a denial of service by modifying certain TCP/IP param... | S | |
| CVE-1999-1119 | FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote att... | S | |
| CVE-1999-1120 | netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executin... | E S | |
| CVE-1999-1121 | The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges.... | S | |
| CVE-1999-1122 | Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges.... | S | |
| CVE-1999-1123 | The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid ... | S | |
| CVE-1999-1124 | HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web ... | | |
| CVE-1999-1125 | Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle... | | |
| CVE-1999-1126 | Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that al... | S | |
| CVE-1999-1127 | Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote a... | S | |
| CVE-1999-1128 | Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands... | | |
| CVE-1999-1129 | Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into ... | S | |
| CVE-1999-1130 | Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other v... | | |
| CVE-1999-1131 | Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and... | S | |
| CVE-1999-1132 | Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing... | S | |
| CVE-1999-1133 | HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (... | | |
| CVE-1999-1134 | Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038... | S | |
| CVE-1999-1135 | Vulnerability in VUE 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4994... | | |
| CVE-1999-1136 | Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers ... | S | |
| CVE-1999-1137 | The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any loc... | S | |
| CVE-1999-1138 | SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp fo... | | |
| CVE-1999-1139 | Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite ... | S | |
| CVE-1999-1140 | Buffer overflow in CrackLib 2.5 may allow local users to gain root privileges via a long GECOS field... | S | |
| CVE-1999-1141 | Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorize... | | |
| CVE-1999-1142 | SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to ... | S | |
| CVE-1999-1143 | Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain p... | S | |
| CVE-1999-1144 | Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local us... | S | |
| CVE-1999-1145 | Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to acc... | S | |
| CVE-1999-1146 | Vulnerability in Glance and gpm programs in GlancePlus for HP-UX 9.x and earlier allows local users ... | S | |
| CVE-1999-1147 | Buffer overflow in Platinum Policy Compliance Manager (PCM) 7.0 allows remote attackers to execute a... | | |
| CVE-1999-1148 | FTP service in IIS 4.0 and earlier allows remote attackers to cause a denial of service (resource ex... | S | |
| CVE-1999-1149 | Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a ... | | |
| CVE-1999-1150 | Livingston Portmaster routers running ComOS use the same initial sequence number (ISN) for TCP conne... | | |
| CVE-1999-1151 | Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a userna... | | |
| CVE-1999-1152 | Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed... | | |
| CVE-1999-1153 | HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell met... | E S | |
| CVE-1999-1154 | LakeWeb Filemail CGI script allows remote attackers to execute arbitrary commands via shell metachar... | E S | |
| CVE-1999-1155 | LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacha... | E S | |
| CVE-1999-1156 | BisonWare FTP Server 4.1 and earlier allows remote attackers to cause a denial of service via a malf... | | |
| CVE-1999-1157 | Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an I... | S | |
| CVE-1999-1158 | Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_s... | S | |
| CVE-1999-1159 | SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without... | | |
| CVE-1999-1160 | Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain roo... | S | |
| CVE-1999-1161 | Vulnerability in ppl in HP-UX 10.x and earlier allows local users to gain root privileges by forcing... | S | |
| CVE-1999-1162 | Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by... | S | |
| CVE-1999-1163 | Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X... | | |
| CVE-1999-1164 | Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple em... | | |
| CVE-1999-1165 | GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could al... | E S | |
| CVE-1999-1166 | Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain roo... | E S | |
| CVE-1999-1167 | Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read... | | |
| CVE-1999-1168 | install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows l... | E | |
| CVE-1999-1169 | nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP pack... | E | |
| CVE-1999-1170 | IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by s... | E | |
| CVE-1999-1171 | IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by ... | | |
| CVE-1999-1172 | By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify... | E | |
| CVE-1999-1173 | Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions... | | |
| CVE-1999-1174 | ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass pass... | | |
| CVE-1999-1175 | Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use ... | S | |
| CVE-1999-1176 | Buffer overflow in cidentd ident daemon allows local users to gain root privileges via a long line i... | | |
| CVE-1999-1177 | Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arb... | S | |
| CVE-1999-1178 | Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via ... | E S | |
| CVE-1999-1179 | Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote a... | S | |
| CVE-1999-1180 | O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via ... | | |
| CVE-1999-1181 | Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users ... | S | |
| CVE-1999-1182 | Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local user... | | |
| CVE-1999-1183 | System Manager sysmgr GUI in SGI IRIX 6.4 and 6.3 allows remote attackers to execute commands by pro... | S | |
| CVE-1999-1184 | Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environ... | | |
| CVE-1999-1185 | Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry ... | | |
| CVE-1999-1186 | rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Sl... | | |
| CVE-1999-1187 | Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile th... | | |
| CVE-1999-1188 | mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to ... | | |
| CVE-1999-1189 | Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote a... | E S | |
| CVE-1999-1190 | Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute ... | E S | |
| CVE-1999-1191 | Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via... | E S | |
| CVE-1999-1192 | Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges vi... | S | |
| CVE-1999-1193 | The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me ... | S | |
| CVE-1999-1194 | chroot in Digital Ultrix 4.1 and 4.0 is insecurely installed, which allows local users to gain privi... | S | |
| CVE-1999-1195 | NAI VirusScan NT 4.0.2 does not properly modify the scan.dat virus definition file during an update ... | | |
| CVE-1999-1196 | Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed da... | E | |
| CVE-1999-1197 | TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect cons... | S | |
| CVE-1999-1198 | BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allo... | S | |
| CVE-1999-1199 | Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource e... | | |
| CVE-1999-1200 | Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@... | | |
| CVE-1999-1201 | Windows 95 and Windows 98 systems, when configured with multiple TCP/IP stacks bound to the same MAC... | | |
| CVE-1999-1202 | StarTech (1) POP3 proxy server and (2) telnet server allows remote attackers to cause a denial of se... | | |
| CVE-1999-1203 | Multilink PPP for ISDN dialup users in Ascend before 4.6 allows remote attackers to cause a denial o... | | |
| CVE-1999-1204 | Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time)... | | |
| CVE-1999-1205 | nettune in HP-UX 10.01 and 10.00 is installed setuid root, which allows local users to cause a denia... | S | |
| CVE-1999-1206 | SystemSoft SystemWizard package in HP Pavilion PC with Windows 98, and possibly other platforms and ... | S | |
| CVE-1999-1207 | Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of servic... | | |
| CVE-1999-1208 | Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long... | | |
| CVE-1999-1209 | Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local use... | S | |
| CVE-1999-1210 | xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a ... | | |
| CVE-1999-1211 | Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.... | S | |
| CVE-1999-1212 | Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.... | S | |
| CVE-1999-1213 | Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service.... | S | |
| CVE-1999-1214 | The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the rec... | | |
| CVE-1999-1215 | LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password informati... | S | |
| CVE-1999-1216 | Cisco routers 9.17 and earlier allow remote attackers to bypass security restrictions via certain IP... | S | |
| CVE-1999-1217 | The PATH in Windows NT includes the current working directory (.), which could allow local users to ... | | |
| CVE-1999-1218 | Vulnerability in finger in Commodore Amiga UNIX 2.1p2a and earlier allows local users to read arbitr... | S | |
| CVE-1999-1219 | Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows loc... | E S | |
| CVE-1999-1220 | Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertis... | E | |
| CVE-1999-1221 | dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attac... | | |
| CVE-1999-1222 | Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash)... | S | |
| CVE-1999-1223 | IIS 3.0 allows remote attackers to cause a denial of service via a request to an ASP page in which t... | S | |
| CVE-1999-1224 | IMAP 4.1 BETA, and possibly other versions, does not properly handle the SIGABRT (abort) signal, whi... | | |
| CVE-1999-1225 | rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determ... | | |
| CVE-1999-1226 | Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and poss... | | |
| CVE-1999-1227 | Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture ... | | |
| CVE-1999-1228 | Various modems that do not implement a guard time, or are configured with a guard time of 0, can all... | | |
| CVE-1999-1229 | Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configurati... | E | |
| CVE-1999-1230 | Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a ... | S | |
| CVE-1999-1231 | ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct pas... | E S | |
| CVE-1999-1232 | Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute ... | | |
| CVE-1999-1233 | IIS 4.0 does not properly restrict access for the initial session request from a user's IP address i... | E S | |
| CVE-1999-1234 | LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL po... | | |
| CVE-1999-1235 | Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which co... | | |
| CVE-1999-1236 | Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which co... | E | |
| CVE-1999-1237 | Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSm... | | |
| CVE-1999-1238 | Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local user... | S | |
| CVE-1999-1239 | HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow... | S | |
| CVE-1999-1240 | Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands vi... | S | |
| CVE-1999-1241 | Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrar... | | |
| CVE-1999-1242 | Vulnerability in subnetconfig in HP-UX 9.01 and 9.0 allows local users to gain privileges.... | S | |
| CVE-1999-1243 | SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for ... | S | |
| CVE-1999-1244 | IPFilter 3.2.3 through 3.2.10 allows local users to modify arbitrary files via a symlink attack on t... | | |
| CVE-1999-1245 | vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community st... | | |
| CVE-1999-1246 | Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintex... | S | |
| CVE-1999-1247 | Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privi... | S | |
| CVE-1999-1248 | Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gai... | S | |
| CVE-1999-1249 | movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges.... | S | |
| CVE-1999-1250 | Vulnerability in CGI program in the Lasso application by Blue World, as used on WebSTAR and other se... | S | |
| CVE-1999-1251 | Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a... | S | |
| CVE-1999-1252 | Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access ... | S | |
| CVE-1999-1253 | Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Intern... | S | |
| CVE-1999-1254 | Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redi... | | |
| CVE-1999-1255 | Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admi... | | |
| CVE-1999-1256 | Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password... | E | |
| CVE-1999-1257 | Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the p... | | |
| CVE-1999-1258 | rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which... | S | |
| CVE-1999-1259 | Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 9... | S | |
| CVE-1999-1260 | mSQL (Mini SQL) 2.0.6 allows remote attackers to obtain sensitive server information such as logged ... | | |
| CVE-1999-1261 | Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and... | | |
| CVE-1999-1262 | Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the o... | | |
| CVE-1999-1263 | Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message c... | | |
| CVE-1999-1264 | WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been... | E | |
| CVE-1999-1265 | SMTP server in SLmail 3.1 and earlier allows remote attackers to cause a denial of service via malfo... | | |
| CVE-1999-1266 | rsh daemon (rshd) generates different error messages when a valid username is provided versus an inv... | | |
| CVE-1999-1267 | KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers ... | | |
| CVE-1999-1268 | Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by acce... | S | |
| CVE-1999-1269 | Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on ... | S | |
| CVE-1999-1270 | KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could... | | |
| CVE-1999-1271 | Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to... | | |
| CVE-1999-1272 | Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges.... | S | |
| CVE-1999-1273 | Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding th... | E S | |
| CVE-1999-1274 | iPass RoamServer 3.1 creates temporary files with world-writable permissions.... | | |
| CVE-1999-1275 | Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insec... | | |
| CVE-1999-1276 | fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local us... | S | |
| CVE-1999-1277 | BackWeb client stores the username and password in cleartext for proxy authentication in the Communi... | | |
| CVE-1999-1278 | nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which cou... | | |
| CVE-1999-1279 | An interaction between the AS/400 shared folders feature and Microsoft SNA Server 3.0 and earlier al... | S | |
| CVE-1999-1280 | Hummingbird Exceed 6.0.1.0 inadvertently includes a DLL that was meant for development and testing, ... | S | |
| CVE-1999-1281 | Development version of Breeze Network Server allows remote attackers to cause the system to reboot b... | | |
| CVE-1999-1282 | RealSystem G2 server stores the administrator password in cleartext in a world-readable configuratio... | S | |
| CVE-1999-1283 | Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that ... | | |
| CVE-1999-1284 | NukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port... | | |
| CVE-1999-1285 | Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by r... | | |
| CVE-1999-1286 | addnetpr in SGI IRIX 6.2 and earlier allows local users to modify arbitrary files and possibly gain ... | | |
| CVE-1999-1287 | Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the form... | | |
| CVE-1999-1288 | Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incor... | S | |
| CVE-1999-1289 | ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an IC... | | |
| CVE-1999-1290 | Buffer overflow in nftp FTP client version 1.40 allows remote malicious FTP servers to cause a denia... | S | |
| CVE-1999-1291 | TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote at... | | |
| CVE-1999-1292 | Buffer overflow in web administration feature of Kolban Webcam32 4.8.3 and earlier allows remote att... | | |
| CVE-1999-1293 | mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malfo... | S | |
| CVE-1999-1294 | Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherite... | S | |
| CVE-1999-1295 | Transarc DCE Distributed File System (DFS) 1.1 for Solaris 2.4 and 2.5 does not properly initialize ... | S | |
| CVE-1999-1296 | Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to g... | | |
| CVE-1999-1297 | cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical a... | S | |
| CVE-1999-1298 | Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user withou... | S | |
| CVE-1999-1299 | rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of ... | | |
| CVE-1999-1300 | Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and mo... | S | |
| CVE-1999-1301 | A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary progra... | S | |
| CVE-1999-1302 | Unspecified vulnerability in pt_chmod in SCO UNIX 4.2 and earlier allows local users to gain root ac... | | |
| CVE-1999-1303 | Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access.... | | |
| CVE-1999-1304 | Vulnerability in login in SCO UNIX 4.2 and earlier allows local users to gain root access.... | | |
| CVE-1999-1305 | Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access.... | | |
| CVE-1999-1306 | Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache ... | S | |
| CVE-1999-1307 | Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.... | S | |
| CVE-1999-1308 | Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over ... | | |
| CVE-1999-1309 | Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) com... | S | |
| CVE-1999-1310 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1022. Reason: This candida... | R | |
| CVE-1999-1311 | Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authent... | | |
| CVE-1999-1312 | Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.0, and OpenVMS AXP 1.0, allows local users to gain ... | S | |
| CVE-1999-1313 | Manual page reader (man) in FreeBSD 2.2 and earlier allows local users to gain privileges via a sequ... | S | |
| CVE-1999-1314 | Vulnerability in union file system in FreeBSD 2.2 and earlier, and possibly other operating systems,... | S | |
| CVE-1999-1315 | Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow loca... | S | |
| CVE-1999-1316 | Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, whic... | S | |
| CVE-1999-1317 | Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link ... | S | |
| CVE-1999-1318 | /usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directo... | S | |
| CVE-1999-1319 | Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain r... | S | |
| CVE-1999-1320 | Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spo... | S | |
| CVE-1999-1321 | Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a... | | |
| CVE-1999-1322 | The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, ... | | |
| CVE-1999-1323 | Norton AntiVirus for Internet Email Gateways (NAVIEG) 1.0.1.7 and earlier, and Norton AntiVirus for ... | | |
| CVE-1999-1324 | VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable ... | S | |
| CVE-1999-1325 | SAS System 5.18 on VAX/VMS is installed with insecure permissions for its directories and startup fi... | | |
| CVE-1999-1326 | wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command ... | | |
| CVE-1999-1327 | Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privil... | | |
| CVE-1999-1328 | linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files a... | | |
| CVE-1999-1329 | Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.... | | |
| CVE-1999-1330 | The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attacke... | | |
| CVE-1999-1331 | netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot... | | |
| CVE-1999-1332 | gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of ... | | |
| CVE-1999-1333 | automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote a... | | |
| CVE-1999-1334 | Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary command... | | |
| CVE-1999-1335 | snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remot... | | |
| CVE-1999-1336 | 3Com HiPer Access Router Card (HiperARC) 4.0 through 4.2.29 allows remote attackers to cause a denia... | | |
| CVE-1999-1337 | FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites... | | |
| CVE-1999-1338 | Delegate proxy 5.9.3 and earlier creates files and directories in the DGROOT with world-writable per... | | |
| CVE-1999-1339 | Vulnerability when Network Address Translation (NAT) is enabled in Linux 2.2.10 and earlier with ipc... | | |
| CVE-1999-1340 | Buffer overflow in faxalter in hylafax 4.0.2 allows local users to gain privileges via a long -m com... | E | |
| CVE-1999-1341 | Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged user... | | |
| CVE-1999-1342 | ICQ ActiveList Server allows remote attackers to cause a denial of service (crash) via malformed pac... | | |
| CVE-1999-1343 | HTTP server for Xerox DocuColor 4 LP allows remote attackers to cause a denial of service (hang) via... | | |
| CVE-1999-1344 | Auto_FTP.pl script in Auto_FTP 0.2 stores usernames and passwords in plaintext in the auto_ftp.conf ... | | |
| CVE-1999-1345 | Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permiss... | | |
| CVE-1999-1346 | PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule ... | | |
| CVE-1999-1347 | Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass e... | | |
| CVE-1999-1348 | Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdow... | | |
| CVE-1999-1349 | NFS daemon (nfsd.exe) for Omni-NFS/X 6.1 allows remote attackers to cause a denial of service (resou... | | |
| CVE-1999-1350 | ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, whic... | | |
| CVE-1999-1351 | Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick | | |
| CVE-1999-1352 | mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain ... | | |
| CVE-1999-1353 | Nosque MsgCore 2.14 stores passwords in cleartext: (1) the administrator password in the AdmPasswd r... | | |
| CVE-1999-1354 | E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords... | | |
| CVE-1999-1355 | BMC Patrol component, when installed with Compaq Insight Management Agent 4.23 and earlier, or Manag... | | |
| CVE-1999-1356 | Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.5... | | |
| CVE-1999-1357 | Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating syste... | | |
| CVE-1999-1358 | When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properl... | S | |
| CVE-1999-1359 | When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT d... | S | |
| CVE-1999-1360 | Windows NT 4.0 allows local users to cause a denial of service via a user mode application that clos... | S | |
| CVE-1999-1361 | Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to caus... | | |
| CVE-1999-1362 | Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by c... | S | |
| CVE-1999-1363 | Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program ... | S | |
| CVE-1999-1364 | Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode ad... | S | |
| CVE-1999-1365 | Windows NT searches a user's home directory (%systemroot% by default) before other directories to fi... | | |
| CVE-1999-1366 | Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini ... | | |
| CVE-1999-1367 | Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not ... | | |
| CVE-1999-1368 | AV Option for MS Exchange Server option for InoculateIT 4.53, and possibly other versions, only scan... | | |
| CVE-1999-1369 | Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmse... | | |
| CVE-1999-1370 | The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could... | | |
| CVE-1999-1371 | Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a l... | E | |
| CVE-1999-1372 | Triactive Remote Manager with Basic authentication enabled stores the username and password in clear... | | |
| CVE-1999-1373 | FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN... | | |
| CVE-1999-1374 | perlshop.cgi shopping cart program stores sensitive customer information in directories and files th... | | |
| CVE-1999-1375 | FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read ... | E | |
| CVE-1999-1376 | Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers t... | | |
| CVE-1999-1377 | Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in... | E | |
| CVE-1999-1378 | dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remo... | | |
| CVE-1999-1379 | DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a... | S | |
| CVE-1999-1380 | Symantec Norton Utilities 2.0 for Windows 95 marks the TUNEOCX.OCX ActiveX control as safe for scrip... | S | |
| CVE-1999-1381 | Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary c... | | |
| CVE-1999-1382 | NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file... | S | |
| CVE-1999-1383 | (1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names t... | E S | |
| CVE-1999-1384 | Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows lo... | E S | |
| CVE-1999-1385 | Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via ... | S | |
| CVE-1999-1386 | Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local... | E | |
| CVE-1999-1387 | Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malfor... | | |
| CVE-1999-1388 | passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -... | E S | |
| CVE-1999-1389 | US Robotics/3Com Total Control Chassis with Frame Relay between 3.6.22 and 3.7.24 does not properly ... | | |
| CVE-1999-1390 | suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying ... | S | |
| CVE-1999-1391 | Vulnerability in NeXT 1.0a and 1.0 with publicly accessible printers allows local users to gain priv... | S | |
| CVE-1999-1392 | Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root... | S | |
| CVE-1999-1393 | Control Panel "Password Security" option for Apple Powerbooks allows attackers with physical access ... | E | |
| CVE-1999-1394 | BSD 4.4 based operating systems, when running at security level 1, allow the root user to clear the ... | | |
| CVE-1999-1395 | Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users ... | S | |
| CVE-1999-1396 | Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through ... | S | |
| CVE-1999-1397 | Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of ... | | |
| CVE-1999-1398 | Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log... | E S | |
| CVE-1999-1399 | spaceball program in SpaceWare 7.3 v1.0 in IRIX 6.2 allows local users to gain root privileges by se... | E S | |
| CVE-1999-1400 | The Economist screen saver 1999 with the "Password Protected" option enabled allows users with physi... | | |
| CVE-1999-1401 | Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for ... | S | |
| CVE-1999-1402 | The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other ... | E S | |
| CVE-1999-1403 | IBM/Tivoli OPC Tracker Agent version 2 release 1 creates files, directories, and IPC message queues ... | | |
| CVE-1999-1404 | IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of servic... | | |
| CVE-1999-1405 | snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions ... | E | |
| CVE-1999-1406 | dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a ... | | |
| CVE-1999-1407 | ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arb... | | |
| CVE-1999-1408 | Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service ... | E S | |
| CVE-1999-1409 | The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbit... | E S | |
| CVE-1999-1410 | addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root ... | E S | |
| CVE-1999-1411 | The installation of the fsp package 2.71-10 in Debian GNU/Linux 2.0 adds the anonymous FTP user with... | E S | |
| CVE-1999-1412 | A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attack... | | |
| CVE-1999-1413 | Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user... | E S | |
| CVE-1999-1414 | IBM Netfinity Remote Control allows local users to gain administrator privileges by starting program... | | |
| CVE-1999-1415 | Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges.... | S | |
| CVE-1999-1416 | AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (res... | | |
| CVE-1999-1417 | Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to... | | |
| CVE-1999-1418 | ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to ... | S | |
| CVE-1999-1419 | Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gai... | S | |
| CVE-1999-1420 | NBase switches NH2012, NH2012R, NH2015, and NH2048 have a back door password that cannot be disabled... | | |
| CVE-1999-1421 | NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software upda... | | |
| CVE-1999-1422 | The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the curren... | | |
| CVE-1999-1423 | ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping r... | E S | |
| CVE-1999-1424 | Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NI... | S | |
| CVE-1999-1425 | Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for ... | S | |
| CVE-1999-1426 | Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, w... | S | |
| CVE-1999-1427 | Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows loca... | S | |
| CVE-1999-1428 | Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the s... | S | |
| CVE-1999-1429 | DIT TransferPro installs devices with world-readable and world-writable permissions, which could all... | | |
| CVE-1999-1430 | PIM software for Royal daVinci does not properly password-protext access to data stored in the .mdb ... | | |
| CVE-1999-1431 | ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explore... | E | |
| CVE-1999-1432 | Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until... | | |
| CVE-1999-1433 | HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a... | | |
| CVE-1999-1434 | login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group fi... | | |
| CVE-1999-1435 | Buffer overflow in libsocks5 library of Socks 5 (socks5) 1.0r5 allows local users to gain privileges... | | |
| CVE-1999-1436 | Ray Chan WWW Authorization Gateway 0.1 CGI program allows remote attackers to execute arbitrary comm... | | |
| CVE-1999-1437 | ePerl 2.2.12 allows remote attackers to read arbitrary files and possibly execute certain commands b... | | |
| CVE-1999-1438 | Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via... | S | |
| CVE-1999-1439 | gcc 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary .i, .s, ... | | |
| CVE-1999-1440 | Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenam... | | |
| CVE-1999-1441 | Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, whic... | | |
| CVE-1999-1442 | Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of ser... | | |
| CVE-1999-1443 | Micah Software Full Armor Network Configurator and Zero Administration allow local users with physic... | | |
| CVE-1999-1444 | genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transa... | | |
| CVE-1999-1445 | Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly othe... | | |
| CVE-1999-1446 | Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located i... | | |
| CVE-1999-1447 | Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code tha... | | |
| CVE-1999-1448 | Eudora and Eudora Light before 3.05 allows remote attackers to cause a crash and corrupt the user's ... | | |
| CVE-1999-1449 | SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by ... | | |
| CVE-1999-1450 | Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and... | | |
| CVE-1999-1451 | The Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary... | S | |
| CVE-1999-1452 | GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard o... | E S | |
| CVE-1999-1453 | Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of t... | E | |
| CVE-1999-1454 | Macromedia "The Matrix" screen saver on Windows 95 with the "Password protected" option enabled allo... | | |
| CVE-1999-1455 | RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specif... | | |
| CVE-1999-1456 | thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET reques... | E | |
| CVE-1999-1457 | Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary co... | | |
| CVE-1999-1458 | Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a l... | E S | |
| CVE-1999-1459 | BMC PATROL Agent before 3.2.07 allows local users to gain root privileges via a symlink attack on a ... | S | |
| CVE-1999-1460 | BMC PATROL SNMP Agent before 3.2.07 allows local users to create arbitrary world-writeable files as ... | E S | |
| CVE-1999-1461 | inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find a... | E S | |
| CVE-1999-1462 | Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attacker... | S | |
| CVE-1999-1463 | Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial ... | E S | |
| CVE-1999-1464 | Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows re... | S | |
| CVE-1999-1465 | Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows re... | S | |
| CVE-1999-1466 | Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access con... | S | |
| CVE-1999-1467 | Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary ... | S | |
| CVE-1999-1468 | rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root ... | S | |
| CVE-1999-1469 | Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitra... | | |
| CVE-1999-1470 | Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, ... | | |
| CVE-1999-1471 | Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain ... | S | |
| CVE-1999-1472 | Internet Explorer 4.0 allows remote attackers to read arbitrary text and HTML files on the user's ma... | E S | |
| CVE-1999-1473 | When a Web site redirects the browser to another site, Internet Explorer 3.02 and 4.0 automatically ... | S | |
| CVE-1999-1474 | PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without... | | |
| CVE-1999-1475 | ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which al... | S | |
| CVE-1999-1476 | A bug in Intel Pentium processor (MMX and Overdrive) allows local users to cause a denial of service... | S | |
| CVE-1999-1477 | Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker... | E S | |
| CVE-1999-1478 | The Sun HotSpot Performance Engine VM allows a remote attacker to cause a denial of service on any s... | | |
| CVE-1999-1479 | The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell me... | | |
| CVE-1999-1480 | (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink atta... | S | |
| CVE-1999-1481 | Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access c... | E S | |
| CVE-1999-1482 | SVGAlib zgv 3.0-7 and earlier allows local users to gain root access via a privilege leak of the iop... | | |
| CVE-1999-1483 | Buffer overflow in zgv in svgalib 1.2.10 and earlier allows local users to execute arbitrary code vi... | | |
| CVE-1999-1484 | Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker t... | E S | |
| CVE-1999-1485 | nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attack... | | |
| CVE-1999-1486 | sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows... | S | |
| CVE-1999-1487 | Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or mo... | S | |
| CVE-1999-1488 | sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without au... | E S | |
| CVE-1999-1489 | Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users... | E S | |
| CVE-1999-1490 | xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental va... | E S | |
| CVE-1999-1491 | abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which al... | E S | |
| CVE-1999-1492 | Vulnerability in (1) diskperf and (2) diskalign in IRIX 6.4 allows local attacker to create arbitrar... | S | |
| CVE-1999-1493 | Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers... | S | |
| CVE-1999-1494 | colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files ... | E S | |
| CVE-1999-1495 | xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on ... | E | |
| CVE-1999-1496 | Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitr... | E | |
| CVE-1999-1497 | Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows lo... | E | |
| CVE-1999-1498 | Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink... | E | |
| CVE-1999-1499 | named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_... | E S | |
| CVE-1999-1500 | Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash... | E S | |
| CVE-1999-1501 | (1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variabl... | S | |
| CVE-1999-1502 | Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands v... | | |
| CVE-1999-1503 | Network Flight Recorder (NFR) 1.5 and 1.6 allows remote attackers to cause a denial of service in nf... | S | |
| CVE-1999-1504 | Stalker Internet Mail Server 1.6 allows a remote attacker to cause a denial of service (crash) via a... | | |
| CVE-1999-1505 | Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and ... | | |
| CVE-1999-1506 | Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to acce... | S | |
| CVE-1999-1507 | Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on f... | E S | |
| CVE-1999-1508 | Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain admini... | E S | |
| CVE-1999-1509 | Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read an... | E S | |
| CVE-1999-1510 | Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of se... | | |
| CVE-1999-1511 | Buffer overflows in Xtramail 1.11 allow attackers to cause a denial of service (crash) and possibly ... | E | |
| CVE-1999-1512 | The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary command... | S | |
| CVE-1999-1513 | Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contain... | | |
| CVE-1999-1514 | Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of ser... | | |
| CVE-1999-1515 | A non-default configuration in TenFour TFS Gateway 4.0 allows an attacker to cause a denial of servi... | E S | |
| CVE-1999-1516 | A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail s... | | |
| CVE-1999-1517 | runtar in the Amanda backup system used in various UNIX operating systems executes tar with root pri... | E S | |
| CVE-1999-1518 | Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a... | E S | |
| CVE-1999-1519 | Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) ... | E | |
| CVE-1999-1520 | A configuration problem in the Ad Server Sample directory (AdSamples) in Microsoft Site Server 3.0 a... | E S | |
| CVE-1999-1521 | Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in t... | E | |
| CVE-1999-1522 | Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursiv... | | |
| CVE-1999-1523 | Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and... | | |
| CVE-1999-1524 | FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password... | | |
| CVE-1999-1525 | Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly ... | | |
| CVE-1999-1526 | Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information ... | | |
| CVE-1999-1527 | Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edi... | E S | |
| CVE-1999-1528 | ProSoft Netware Client 5.12 on Macintosh MacOS 9 does not automatically log a user out of the NDS tr... | S | |
| CVE-1999-1529 | A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.... | E S | |
| CVE-1999-1530 | cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain... | S | |
| CVE-1999-1531 | Buffer overflow in IBM HomePagePrint 1.0.7 for Windows98J allows a malicious Web site to execute arb... | E S | |
| CVE-1999-1532 | Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service ... | E | |
| CVE-1999-1533 | Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) vi... | | |
| CVE-1999-1534 | Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local use... | E S | |
| CVE-1999-1535 | Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attacker... | | |
| CVE-1999-1536 | .sbstart startup script in AcuShop Salesbuilder is world writable, which allows local users to gain ... | | |
| CVE-1999-1537 | IIS 3.x and 4.x does not distinguish between pages requiring encryption and those that do not, which... | S | |
| CVE-1999-1538 | When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does... | E | |
| CVE-1999-1539 | Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 ... | E | |
| CVE-1999-1540 | shell-lock in Cactus Software Shell Lock uses weak encryption (trivial encoding) which allows attack... | | |
| CVE-1999-1541 | shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files be... | | |
| CVE-1999-1542 | RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell meta... | | |
| CVE-1999-1543 | MacOS uses weak encryption for passwords that are stored in the Users & Groups Data File.... | E S | |
| CVE-1999-1544 | Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attacke... | | |
| CVE-1999-1545 | Joe's Own Editor (joe) 2.8 sets the world-readable permission on its crash-save file, DEADJOE, which... | | |
| CVE-1999-1546 | netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS ... | | |
| CVE-1999-1547 | Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a charact... | E | |
| CVE-1999-1548 | Cabletron SmartSwitch Router (SSR) 8000 firmware 2.x can only handle 200 ARP requests per second all... | S | |
| CVE-1999-1549 | Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local a... | E | |
| CVE-1999-1550 | bigconf.conf in F5 BIG/ip 2.1.2 and earlier allows remote attackers to read arbitrary files by speci... | | |
| CVE-1999-1551 | Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash... | E S | |
| CVE-1999-1552 | dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check pri... | S | |
| CVE-1999-1553 | Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary... | E | |
| CVE-1999-1554 | /usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the u... | S | |
| CVE-1999-1555 | Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2 creates an update director... | E S | |
| CVE-1999-1556 | Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account a... | | |
| CVE-1999-1557 | Buffer overflow in the login functions in IMAP server (imapd) in Ipswitch IMail 5.0 and earlier allo... | | |
| CVE-1999-1558 | Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when externa... | S | |
| CVE-1999-1559 | Xylan OmniSwitch before 3.2.6 allows remote attackers to bypass the login prompt via a CTRL-D (contr... | | |
| CVE-1999-1560 | Vulnerability in a script in Texas A&M University (TAMU) Tiger allows local users to execute arbitra... | | |
| CVE-1999-1561 | Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (s... | S | |
| CVE-1999-1562 | gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the lo... | S | |
| CVE-1999-1563 | Nachuatec D435 and D445 printer allows remote attackers to cause a denial of service via ICMP redire... | E | |
| CVE-1999-1564 | FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) wit... | E | |
| CVE-1999-1565 | Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a t... | S | |
| CVE-1999-1566 | Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of servic... | E | |
| CVE-1999-1567 | Seapine Software TestTrack server allows a remote attacker to cause a denial of service (high CPU) v... | | |
| CVE-1999-1568 | Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of ser... | | |
| CVE-1999-1569 | Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustio... | E | |
| CVE-1999-1570 | Buffer overflow in sar for OpenServer 5.0.5 allows local users to gain root privileges via a long -o... | S | |
| CVE-1999-1571 | Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root pri... | S | |
| CVE-1999-1572 | cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask wh... | E | |
| CVE-1999-1573 | Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (... | S | |
| CVE-1999-1574 | Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump... | S | |
| CVE-1999-1575 | The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (img... | E | |
| CVE-1999-1576 | Buffer overflow in Adobe Acrobat ActiveX control (pdf.ocx, PDF.PdfCtrl.1) 1.3.188 for Acrobat Reader... | E S | |
| CVE-1999-1577 | Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allo... | | |
| CVE-1999-1578 | Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for In... | E S | |
| CVE-1999-1579 | The Cenroll ActiveX control (xenroll.dll) for Terminal Server Editions of Windows NT 4.0 and Windows... | | |
| CVE-1999-1580 | SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows loca... | E S | |
| CVE-1999-1581 | Memory leak in Simple Network Management Protocol (SNMP) agent (snmp.exe) for Windows NT 4.0 before ... | | |
| CVE-1999-1582 | By design, the "established" command on the Cisco PIX firewall allows connections from one host to a... | | |
| CVE-1999-1583 | Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long host... | E S | |
| CVE-1999-1584 | Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid ... | S | |
| CVE-1999-1585 | The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged sh... | S | |
| CVE-1999-1586 | loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allow... | S | |
| CVE-1999-1587 | /usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to... | E S | |
| CVE-1999-1588 | Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to exe... | E | |
| CVE-1999-1589 | Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via u... | S | |
| CVE-1999-1590 | Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attac... | E | |
| CVE-1999-1591 | Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for ... | | |
| CVE-1999-1592 | Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, ha... | S | |
| CVE-1999-1593 | Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connect... | E | |
| CVE-1999-1594 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-1999-1595 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-1999-1596 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-1999-1597 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-1999-1598 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R |