A comprehensive collection of Common Vulnerabilities and Exposures
Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter....
Read Full ArticleBuffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option....
Read Full ArticleThe undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call....
Read Full ArticleThe guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter....
Read Full ArticleNetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield the CPU, aka "cpu-hog"....
Read Full ArticlePublished: 2000-05-29
Severity: N/A
Buffer overflow in Linux cdrecord allows local users to gain privileges via the dev parameter....
Read MorePublished: 2000-05-29
Severity: N/A
Buffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option....
Read MorePublished: 2000-05-29
Severity: N/A
The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore ...
Read MorePublished: 2000-05-29
Severity: N/A
The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with ...
Read MorePublished: 2000-05-28
Severity: N/A
NetBSD 1.4.2 and earlier allows local users to cause a denial of service by repeatedly running certain system calls in the kernel which do not yield t...
Read MorePublished: 2000-05-28
Severity: N/A
ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access oth...
Read MorePublished: 2000-05-27
Severity: N/A
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable....
Read MorePublished: 2000-05-26
Severity: N/A
Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for...
Read MorePublished: 2000-05-26
Severity: N/A
Race condition in IPFilter firewall 3.4.3 and earlier, when configured with overlapping "return-rst" and "keep state" rules, allows remote attackers t...
Read MorePublished: 2000-05-25
Severity: N/A
The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announceme...
Read MorePublished: 2000-05-25
Severity: N/A
The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the ...
Read MorePublished: 2000-05-24
Severity: N/A
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to ...
Read MorePublished: 2000-05-24
Severity: N/A
Buffer overflow in wconsole.dll in Rockliffe MailSite Management Agent allows remote attackers to execute arbitrary commands via a long query_string p...
Read MorePublished: 2000-05-24
Severity: N/A
Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name....
Read MorePublished: 2000-05-24
Severity: N/A
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems....
Read MorePublished: 2000-05-24
Severity: N/A
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command....
Read MorePublished: 2000-05-24
Severity: N/A
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-05-24
Severity: N/A
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000....
Read MorePublished: 2000-05-24
Severity: N/A
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predi...
Read MorePublished: 2000-05-24
Severity: N/A
Buffer overflow in MDBMS database server allows remote attackers to execute arbitrary commands via a long string....
Read MorePublished: 2000-05-24
Severity: N/A
Buffer overflow in the XDMCP parsing code of GNOME gdm, KDE kdm, and wdm allows remote attackers to execute arbitrary commands or cause a denial of se...
Read MorePublished: 2000-05-23
Severity: N/A
The Cayman 3220-H DSL router allows remote attackers to cause a denial of service via oversized ICMP echo (ping) requests....
Read MorePublished: 2000-05-23
Severity: N/A
The file transfer mechanism in Danware NetOp 6.0 does not provide authentication, which allows remote attackers to access and modify arbitrary files....
Read MorePublished: 2000-05-22
Severity: N/A
Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to b...
Read MorePublished: 2000-05-22
Severity: N/A
Buffer overflow in fdmount on Linux systems allows local users in the "floppy" group to execute arbitrary commands via a long mountpoint parameter....
Read MorePublished: 2000-05-19
Severity: N/A
Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a la...
Read MorePublished: 2000-05-19
Severity: N/A
MetaProducts Offline Explorer 1.2 and earlier allows remote attackers to access arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-05-19
Severity: N/A
The Intel express 8100 ISDN router allows remote attackers to cause a denial of service via oversized or fragmented ICMP packets....
Read MorePublished: 2000-05-18
Severity: N/A
NetProwler 3.0 allows remote attackers to cause a denial of service by sending malformed IP packets that trigger NetProwler's Man-in-the-Middle signat...
Read MorePublished: 2000-05-18
Severity: N/A
Buffer overflow in the CyberPatrol daemon "cyberdaemon" used in gauntlet and WebShield allows remote attackers to cause a denial of service or execute...
Read MorePublished: 2000-05-18
Severity: N/A
Vulnerability in bbd server in Big Brother System and Network Monitor allows an attacker to execute arbitrary commands....
Read MorePublished: 2000-05-18
Severity: N/A
Buffer overflow in the ESMTP service of Lotus Domino Server 5.0.1 allows remote attackers to cause a denial of service via a long MAIL FROM command....
Read MorePublished: 2000-05-18
Severity: N/A
XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000....
Read MorePublished: 2000-05-18
Severity: N/A
BeOS 5.0 allows remote attackers to cause a denial of service via fragmented TCP packets....
Read MorePublished: 2000-05-17
Severity: N/A
xsoldier program allows local users to gain root access via a long argument....
Read MorePublished: 2000-05-17
Severity: N/A
A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unen...
Read MorePublished: 2000-05-17
Severity: N/A
The HTTP administration interface to the Cayman 3220-H DSL router allows remote attackers to cause a denial of service via a long username or password...
Read MorePublished: 2000-05-17
Severity: N/A
Internet Explorer 4.x and 5.x allows remote attackers to execute arbitrary commands via a buffer overflow in the ActiveX parameter parsing capability,...
Read MorePublished: 2000-05-17
Severity: N/A
Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client f...
Read MorePublished: 2000-05-16
Severity: N/A
Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration reque...
Read MorePublished: 2000-05-16
Severity: N/A
The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so....
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges....
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges....
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges....
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges....
Read MorePublished: 2000-05-16
Severity: N/A
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to ga...
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request....
Read MorePublished: 2000-05-16
Severity: N/A
Buffer overflow in L0pht AntiSniff allows remote attackers to execute arbitrary commands via a malformed DNS response packet....
Read MorePublished: 2000-05-16
Severity: N/A
The calender.pl and the calendar_admin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters...
Read MorePublished: 2000-05-15
Severity: N/A
The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's ema...
Read MorePublished: 2000-05-15
Severity: N/A
The CGI counter 4.0.7 by George Burgyan allows remote attackers to execute arbitrary commands via shell metacharacters....
Read MorePublished: 2000-05-13
Severity: N/A
The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to do...
Read MorePublished: 2000-05-13
Severity: N/A
The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote atta...
Read MorePublished: 2000-05-13
Severity: N/A
The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allow...
Read MorePublished: 2000-05-12
Severity: N/A
Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option....
Read MorePublished: 2000-05-12
Severity: N/A
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment wit...
Read MorePublished: 2000-05-11
Severity: N/A
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions...
Read MorePublished: 2000-05-11
Severity: N/A
NTMail 5.x allows network users to bypass the NTMail proxy restrictions by redirecting their requests to NTMail's web configuration server....
Read MorePublished: 2000-05-11
Severity: N/A
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show M...
Read MorePublished: 2000-05-11
Severity: N/A
The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry, which could allow an attacker tor ecover it and use it to ...
Read MorePublished: 2000-05-11
Severity: N/A
The process_bug.cgi script in Bugzilla allows remote attackers to execute arbitrary commands via shell metacharacters....
Read MorePublished: 2000-05-11
Severity: N/A
Internet Explorer 4.0 and 5.0 allows a malicious web site to obtain client cookies from another domain by including that domain name and escaped chara...
Read MorePublished: 2000-05-11
Severity: N/A
ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) a...
Read MorePublished: 2000-05-10
Severity: N/A
Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request...
Read MorePublished: 2000-05-10
Severity: N/A
Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal informa...
Read MorePublished: 2000-05-10
Severity: N/A
Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the ce...
Read MorePublished: 2000-05-10
Severity: N/A
ColdFusion Server 4.5.1 allows remote attackers to cause a denial of service by making repeated requests to a CFCACHE tagged cache file that is not st...
Read MorePublished: 2000-05-10
Severity: N/A
Matt Wright's FormMail CGI script allows remote attackers to obtain environmental variables via the env_report parameter....
Read MorePublished: 2000-05-09
Severity: N/A
The makelev program in the golddig game from the FreeBSD ports collection allows local users to overwrite arbitrary files....
Read MorePublished: 2000-05-08
Severity: N/A
ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirecte...
Read MorePublished: 2000-05-08
Severity: N/A
The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient....
Read MorePublished: 2000-05-08
Severity: N/A
NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC add...
Read MorePublished: 2000-05-06
Severity: N/A
The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP,...
Read MorePublished: 2000-05-05
Severity: N/A
The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existi...
Read MorePublished: 2000-05-05
Severity: N/A
Buffer overflow in Netwin DNEWSWEB CGI program allows remote attackers to execute arbitrary commands via long parameters such as group, cmd, and utag....
Read MorePublished: 2000-05-05
Severity: N/A
UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes...
Read MorePublished: 2000-05-04
Severity: N/A
Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables....
Read MorePublished: 2000-05-04
Severity: N/A
Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter....
Read MorePublished: 2000-05-04
Severity: N/A
The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PI...
Read MorePublished: 2000-05-04
Severity: N/A
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filena...
Read MorePublished: 2000-05-03
Severity: N/A
Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack....
Read MorePublished: 2000-05-03
Severity: N/A
UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbitrary files via a pathname string that includes a do...
Read MorePublished: 2000-05-03
Severity: N/A
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results....
Read MorePublished: 2000-05-03
Severity: N/A
The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show com...
Read MorePublished: 2000-05-03
Severity: N/A
The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, but an open file descriptor for those devices can b...
Read MorePublished: 2000-05-03
Severity: N/A
Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands....
Read MorePublished: 2000-05-03
Severity: N/A
Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to the URL request....
Read MorePublished: 2000-05-02
Severity: N/A
A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such as (1) Trinoo, (2) Tribe Flood Network (TFN), (3) ...
Read MorePublished: 2000-05-02
Severity: N/A
aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitrary files by creating files whose names include spac...
Read MorePublished: 2000-05-02
Severity: N/A
Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to execute arbitrary commands via a long MAIL FROM mail he...
Read MorePublished: 2000-05-02
Severity: N/A
AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via an invalid range request to the web server....
Read MorePublished: 2000-05-02
Severity: N/A
Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name....
Read MorePublished: 2000-05-02
Severity: N/A
FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restrictions via the XML publishing or email capabilitie...
Read MorePublished: 2000-05-02
Severity: N/A
FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email....
Read MorePublished: 2000-05-02
Severity: N/A
The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which allows local users to gain privileges to those accoun...
Read MorePublished: 2000-05-01
Severity: N/A
Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names....
Read MorePublished: 2000-05-01
Severity: N/A
ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long login name....
Read MorePublished: 2000-05-01
Severity: N/A
The knfsd NFS server in Linux kernel 2.2.x allows remote attackers to cause a denial of service via a negative size value....
Read MorePublished: 2000-05-01
Severity: N/A
Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers to execute arbitrary commands via a long query strin...
Read MorePublished: 2000-05-01
Severity: N/A
NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet with an unaligned IP timestamp option....
Read MorePublished: 2000-05-01
Severity: N/A
Buffer overflow in WebShield SMTP 4.5.44 allows remote attackers to execute arbitrary commands via a long configuration parameter to the WebShield rem...
Read MorePublished: 2000-05-01
Severity: N/A
The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the management port when an IP address does not resolve to a ho...
Read MorePublished: 2000-05-01
Severity: N/A
Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields....
Read MorePublished: 2000-04-29
Severity: N/A
Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable....
Read MorePublished: 2000-04-28
Severity: HIGH
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers...
Read MorePublished: 2000-04-27
Severity: N/A
Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables....
Read MorePublished: 2000-04-27
Severity: N/A
A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands....
Read MorePublished: 2000-04-26
Severity: N/A
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program....
Read MorePublished: 2000-04-26
Severity: N/A
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a ...
Read MorePublished: 2000-04-25
Severity: N/A
pcAnywhere 8.x and 9.0 allows remote attackers to cause a denial of service via a TCP SYN scan, e.g. by nmap....
Read MorePublished: 2000-04-25
Severity: N/A
Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allows remote attackers to sniff and decrypt passwords ...
Read MorePublished: 2000-04-24
Severity: N/A
The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to e...
Read MorePublished: 2000-04-24
Severity: N/A
Buffer overflow in Solaris 7 lp allows local users to gain root privileges via a long -d option....
Read MorePublished: 2000-04-24
Severity: N/A
Buffer overflow in Solaris 7 lpset allows local users to gain root privileges via a long -r option....
Read MorePublished: 2000-04-24
Severity: N/A
Buffer overflow in IC Radius package allows a remote attacker to cause a denial of service via a long user name....
Read MorePublished: 2000-04-24
Severity: N/A
The passwd.php3 CGI script in the Red Hat Piranha Virtual Server Package allows local users to execute arbitrary commands via shell metacharacters....
Read MorePublished: 2000-04-24
Severity: N/A
The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activiti...
Read MorePublished: 2000-04-24
Severity: N/A
Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter....
Read MorePublished: 2000-04-24
Severity: N/A
ZoneAlarm 2.1.10 and earlier does not filter UDP packets with a source port of 67, which allows remote attackers to bypass the firewall rules....
Read MorePublished: 2000-04-23
Severity: N/A
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to ca...
Read MorePublished: 2000-04-23
Severity: MEDIUM
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creatin...
Read MorePublished: 2000-04-22
Severity: N/A
The MSWordView application in IMP creates world-readable files in the /tmp directory, which allows other local users to read potentially sensitive inf...
Read MorePublished: 2000-04-22
Severity: N/A
IMP does not remove files properly if the MSWordView application quits, which allows local users to cause a denial of service by filling up the disk s...
Read MorePublished: 2000-04-21
Severity: N/A
Buffer overflow in LCDproc allows remote attackers to gain root privileges via the screen_add command....
Read MorePublished: 2000-04-21
Severity: N/A
Atrium Mercur Mail Server 3.2 allows local attackers to read other user's email and create arbitrary files via a dot dot (..) attack....
Read MorePublished: 2000-04-21
Severity: N/A
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a deni...
Read MorePublished: 2000-04-21
Severity: N/A
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack....
Read MorePublished: 2000-04-20
Severity: N/A
Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password....
Read MorePublished: 2000-04-20
Severity: N/A
Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to ...
Read MorePublished: 2000-04-20
Severity: N/A
RealNetworks RealServer allows remote attackers to cause a denial of service by sending malformed input to the server at port 7070....
Read MorePublished: 2000-04-20
Severity: N/A
The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixe...
Read MorePublished: 2000-04-20
Severity: N/A
Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long e...
Read MorePublished: 2000-04-19
Severity: N/A
Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise av...
Read MorePublished: 2000-04-19
Severity: N/A
Buffer overflow in the NetWare remote web administration utility allows remote attackers to cause a denial of service or execute commands via a long U...
Read MorePublished: 2000-04-19
Severity: N/A
The Adtran MX2800 M13 Multiplexer allows remote attackers to cause a denial of service via a ping flood to the Ethernet interface, which causes the de...
Read MorePublished: 2000-04-18
Severity: N/A
HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain addition...
Read MorePublished: 2000-04-18
Severity: N/A
Internet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malicious applet that interacts with the Java JSObject ...
Read MorePublished: 2000-04-18
Severity: N/A
Emacs 20 does not properly set permissions for a slave PTY device when starting a new subprocess, which allows local users to read or modify communica...
Read MorePublished: 2000-04-18
Severity: N/A
The make-temp-name Lisp function in Emacs 20 creates temporary files with predictable names, which allows attackers to conduct a symlink attack....
Read MorePublished: 2000-04-18
Severity: N/A
read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypte...
Read MorePublished: 2000-04-17
Severity: N/A
Panda Security 3.0 with registry editing disabled allows users to edit the registry and gain privileges by directly executing a .reg file or using oth...
Read MorePublished: 2000-04-17
Severity: N/A
Panda Security 3.0 allows users to uninstall the Panda software via its Add/Remove Programs applet....
Read MorePublished: 2000-04-16
Severity: N/A
The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request....
Read MorePublished: 2000-04-16
Severity: N/A
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands....
Read MorePublished: 2000-04-16
Severity: N/A
Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter....
Read MorePublished: 2000-04-16
Severity: N/A
X fontserver xfs allows local users to cause a denial of service via malformed input to the server....
Read MorePublished: 2000-04-16
Severity: N/A
Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document....
Read MorePublished: 2000-04-14
Severity: N/A
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords....
Read MorePublished: 2000-04-14
Severity: N/A
The dansie shopping cart application cart.pl allows remote attackers to obtain the shopping cart database and configuration information via a URL that...
Read MorePublished: 2000-04-14
Severity: N/A
Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link Vi...
Read MorePublished: 2000-04-14
Severity: CRITICAL
The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to 0, which c...
Read MorePublished: 2000-04-12
Severity: HIGH
IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad E...
Read MorePublished: 2000-04-12
Severity: N/A
The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise...
Read MorePublished: 2000-04-12
Severity: N/A
The AVM KEN! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-04-12
Severity: N/A
The AVM KEN! ISDN Proxy server allows remote attackers to cause a denial of service via a malformed request....
Read MorePublished: 2000-04-12
Severity: N/A
TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webpl...
Read MorePublished: 2000-04-12
Severity: N/A
The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon....
Read MorePublished: 2000-04-12
Severity: N/A
The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter....
Read MorePublished: 2000-04-12
Severity: N/A
Infonautics getdoc.cgi allows remote attackers to bypass the payment phase for accessing documents via a modified form variable....
Read MorePublished: 2000-04-11
Severity: N/A
The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. (dot dot) attack....
Read MorePublished: 2000-04-11
Severity: N/A
The Bluestone Sapphire web server allows session hijacking via easily guessable session IDs....
Read MorePublished: 2000-04-11
Severity: N/A
After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password....
Read MorePublished: 2000-04-11
Severity: N/A
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init befor...
Read MorePublished: 2000-04-11
Severity: N/A
The dansie shopping cart application cart.pl allows remote attackers to execute commands via a shell metacharacters in a form variable....
Read MorePublished: 2000-04-11
Severity: N/A
The dansie shopping cart application cart.pl allows remote attackers to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-04-10
Severity: N/A
The Linux trustees kernel patch allows attackers to cause a denial of service by accessing a file or directory with a long name....
Read MorePublished: 2000-04-10
Severity: N/A
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate...
Read MorePublished: 2000-04-10
Severity: N/A
BeOS 4.5 and 5.0 allow local users to cause a denial of service via malformed direct system calls using interrupt 37....
Read MorePublished: 2000-04-10
Severity: N/A
Buffer overflow in healthd for FreeBSD allows local users to gain root privileges....
Read MorePublished: 2000-04-09
Severity: N/A
PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt....
Read MorePublished: 2000-04-07
Severity: N/A
BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers....
Read MorePublished: 2000-04-07
Severity: N/A
The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories....
Read MorePublished: 2000-04-06
Severity: N/A
HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses....
Read MorePublished: 2000-04-06
Severity: N/A
The default encryption method of PcAnywhere 9.x uses weak encryption, which allows remote attackers to sniff and decrypt PcAnywhere or NT domain accou...
Read MorePublished: 2000-04-06
Severity: N/A
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command....
Read MorePublished: 2000-04-05
Severity: N/A
The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program....
Read MorePublished: 2000-04-04
Severity: N/A
Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request wit...
Read MorePublished: 2000-04-03
Severity: N/A
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attac...
Read MorePublished: 2000-04-03
Severity: N/A
Buffer overflow in the RealNetworks RealPlayer client versions 6 and 7 allows remote attackers to cause a denial of service via a long Location URL....
Read MorePublished: 2000-04-03
Severity: N/A
Allaire Forums 2.0.5 allows remote attackers to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForum...
Read MorePublished: 2000-04-03
Severity: N/A
The web administration interface for CommuniGate Pro 3.2.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-04-01
Severity: N/A
A remote attacker can read information from a Netscape user's cache via JavaScript....
Read MorePublished: 2000-03-31
Severity: N/A
The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file....
Read MorePublished: 2000-03-31
Severity: N/A
Buffer overflow in Webstar HTTP server allows remote attackers to cause a denial of service via a long GET request....
Read MorePublished: 2000-03-31
Severity: N/A
fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck....
Read MorePublished: 2000-03-31
Severity: N/A
Microsoft Index Server allows remote attackers to view the source code of ASP files by appending a %20 to the filename in the CiWebHitsFile argument t...
Read MorePublished: 2000-03-30
Severity: N/A
Remote attackers can cause a denial of service in Novell BorderManager 3.5 by pressing the enter key in a telnet connection to port 2000....
Read MorePublished: 2000-03-30
Severity: N/A
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request....
Read MorePublished: 2000-03-30
Severity: N/A
IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to...
Read MorePublished: 2000-03-29
Severity: N/A
The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication....
Read MorePublished: 2000-03-27
Severity: N/A
Buffer overflow in the huh program in the orville-write package allows local users to gain root privileges....
Read MorePublished: 2000-03-27
Severity: N/A
Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts....
Read MorePublished: 2000-03-27
Severity: N/A
IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address...
Read MorePublished: 2000-03-26
Severity: N/A
Buffer overflow in the Napster client beta 5 allows remote attackers to cause a denial of service via a long message....
Read MorePublished: 2000-03-25
Severity: N/A
WindMail allows remote attackers to read arbitrary files or execute commands via shell metacharacters....
Read MorePublished: 2000-03-25
Severity: N/A
AnalogX SimpleServer:WWW HTTP server 1.03 allows remote attackers to cause a denial of service via a short GET request to cgi-bin....
Read MorePublished: 2000-03-23
Severity: N/A
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a d...
Read MorePublished: 2000-03-22
Severity: N/A
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root....
Read MorePublished: 2000-03-22
Severity: N/A
Unknown vulnerability in Generic-NQS (GNQS) allows local users to gain root privileges....
Read MorePublished: 2000-03-21
Severity: N/A
vqSoft vqServer program allows remote attackers to read arbitrary files via a /........../ in the URL, a variation of a .. (dot dot) attack....
Read MorePublished: 2000-03-21
Severity: N/A
vqSoft vqServer stores sensitive information such as passwords in cleartext in the server.cfg file, which allows attackers to gain privileges....
Read MorePublished: 2000-03-20
Severity: N/A
IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Tr...
Read MorePublished: 2000-03-20
Severity: N/A
Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legi...
Read MorePublished: 2000-03-17
Severity: N/A
Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to...
Read MorePublished: 2000-03-17
Severity: N/A
Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-...
Read MorePublished: 2000-03-17
Severity: N/A
Buffer overflow in the web server for Norton AntiVirus for Internet Email Gateways allows remote attackers to cause a denial of service via a long URL...
Read MorePublished: 2000-03-16
Severity: N/A
Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges....
Read MorePublished: 2000-03-15
Severity: N/A
Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'....
Read MorePublished: 2000-03-15
Severity: N/A
Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service....
Read MorePublished: 2000-03-15
Severity: N/A
SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges....
Read MorePublished: 2000-03-15
Severity: N/A
Buffer overflow in the MERCUR WebView WebMail server allows remote attackers to cause a denial of service via a long mail_user parameter in the GET re...
Read MorePublished: 2000-03-14
Severity: N/A
Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-03-14
Severity: N/A
When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is n...
Read MorePublished: 2000-03-13
Severity: N/A
Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable....
Read MorePublished: 2000-03-11
Severity: N/A
atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges....
Read MorePublished: 2000-03-11
Severity: N/A
Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the h...
Read MorePublished: 2000-03-11
Severity: N/A
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher dire...
Read MorePublished: 2000-03-10
Severity: N/A
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service....
Read MorePublished: 2000-03-10
Severity: N/A
Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability....
Read MorePublished: 2000-03-10
Severity: N/A
Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter....
Read MorePublished: 2000-03-09
Severity: N/A
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-03-09
Severity: N/A
Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command....
Read MorePublished: 2000-03-09
Severity: N/A
Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwor...
Read MorePublished: 2000-03-08
Severity: N/A
RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private....
Read MorePublished: 2000-03-08
Severity: N/A
Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL que...
Read MorePublished: 2000-03-07
Severity: N/A
The Pocsag POC32 program does not properly prevent remote users from accessing its server port, even if the option has been disabled....
Read MorePublished: 2000-03-06
Severity: N/A
Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art l...
Read MorePublished: 2000-03-05
Severity: N/A
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are ins...
Read MorePublished: 2000-03-05
Severity: N/A
The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local ...
Read MorePublished: 2000-03-04
Severity: N/A
Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Dev...
Read MorePublished: 2000-03-03
Severity: N/A
The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges....
Read MorePublished: 2000-03-03
Severity: N/A
Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients....
Read MorePublished: 2000-03-02
Severity: N/A
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges....
Read MorePublished: 2000-03-02
Severity: N/A
DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters....
Read MorePublished: 2000-03-02
Severity: N/A
AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value....
Read MorePublished: 2000-03-02
Severity: N/A
The default configuration of Dosemu in Corel Linux 1.0 allows local users to execute the system.com program and gain privileges....
Read MorePublished: 2000-03-01
Severity: N/A
ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend....
Read MorePublished: 2000-03-01
Severity: N/A
The window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be executed from the local host, which allows remote...
Read MorePublished: 2000-03-01
Severity: N/A
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters....
Read MorePublished: 2000-02-29
Severity: N/A
The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a di...
Read MorePublished: 2000-02-29
Severity: N/A
Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack....
Read MorePublished: 2000-02-29
Severity: N/A
The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters ...
Read MorePublished: 2000-02-29
Severity: N/A
Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow...
Read MorePublished: 2000-02-28
Severity: N/A
ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions....
Read MorePublished: 2000-02-28
Severity: N/A
HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555....
Read MorePublished: 2000-02-28
Severity: N/A
Buffer overflow in the dump utility in the Linux ext2fs backup package allows local users to gain privileges via a long command line argument....
Read MorePublished: 2000-02-28
Severity: N/A
Buffer overflow in mhshow in the Linux nmh package allows remote attackers to execute commands via malformed MIME headers in an email message....
Read MorePublished: 2000-02-28
Severity: N/A
The Trend Micro OfficeScan client tmlisten.exe allows remote attackers to cause a denial of service via malformed data to port 12345....
Read MorePublished: 2000-02-28
Severity: N/A
The Trend Micro OfficeScan client allows remote attackers to cause a denial of service by making 5 connections to port 12345, which raises CPU utiliza...
Read MorePublished: 2000-02-27
Severity: N/A
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metachar...
Read MorePublished: 2000-02-27
Severity: N/A
EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharac...
Read MorePublished: 2000-02-27
Severity: N/A
Buffer overflow in Lynx 2.x allows remote attackers to crash Lynx and possibly execute commands via a long URL in a malicious web page....
Read MorePublished: 2000-02-26
Severity: N/A
Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable....
Read MorePublished: 2000-02-25
Severity: N/A
The Nautica Marlin bridge allows remote attackers to cause a denial of service via a zero length UDP packet to the SNMP port....
Read MorePublished: 2000-02-24
Severity: N/A
buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters....
Read MorePublished: 2000-02-24
Severity: N/A
setxconf in Corel Linux allows local users to gain root access via the -T parameter, which executes the user's .xserverrc file....
Read MorePublished: 2000-02-24
Severity: N/A
InterAccess TelnetD Server 4.0 allows remote attackers to conduct a denial of service via malformed terminal client configuration information....
Read MorePublished: 2000-02-24
Severity: N/A
FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites....
Read MorePublished: 2000-02-24
Severity: N/A
The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth progr...
Read MorePublished: 2000-02-24
Severity: N/A
ZoneAlarm sends sensitive system and network information in cleartext to the Zone Labs server if a user requests more information about an event....
Read MorePublished: 2000-02-23
Severity: N/A
iPlanet Web Server 4.1 allows remote attackers to cause a denial of service via a large number of GET commands, which consumes memory and causes a ker...
Read MorePublished: 2000-02-23
Severity: N/A
The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper se...
Read MorePublished: 2000-02-23
Severity: N/A
The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacha...
Read MorePublished: 2000-02-23
Severity: N/A
Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt....
Read MorePublished: 2000-02-21
Severity: N/A
The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without promptin...
Read MorePublished: 2000-02-21
Severity: N/A
asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file....
Read MorePublished: 2000-02-21
Severity: N/A
Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name....
Read MorePublished: 2000-02-21
Severity: N/A
The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files....
Read MorePublished: 2000-02-20
Severity: N/A
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords....
Read MorePublished: 2000-02-18
Severity: N/A
Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when ...
Read MorePublished: 2000-02-18
Severity: N/A
Sample web sites on Microsoft Site Server 3.0 Commerce Edition do not validate an identification number, which allows remote attackers to execute SQL ...
Read MorePublished: 2000-02-18
Severity: N/A
The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes th...
Read MorePublished: 2000-02-17
Severity: N/A
HP Ignite-UX does not save /etc/passwd when it creates an image of a trusted system, which can set the password field to a blank and allow an attacker...
Read MorePublished: 2000-02-16
Severity: N/A
procfs in BSD systems allows local users to gain root privileges by modifying the /proc/pid/mem interface via a modified file descriptor for stderr....
Read MorePublished: 2000-02-16
Severity: N/A
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack....
Read MorePublished: 2000-02-16
Severity: N/A
Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source R...
Read MorePublished: 2000-02-16
Severity: N/A
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon....
Read MorePublished: 2000-02-15
Severity: N/A
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup direc...
Read MorePublished: 2000-02-15
Severity: N/A
The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers to connect...
Read MorePublished: 2000-02-15
Severity: N/A
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack....
Read MorePublished: 2000-02-14
Severity: N/A
The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain p...
Read MorePublished: 2000-02-12
Severity: N/A
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewa...
Read MorePublished: 2000-02-11
Severity: N/A
Infopop Ultimate Bulletin Board (UBB) allows remote attackers to execute commands via shell metacharacters in the topic hidden field....
Read MorePublished: 2000-02-11
Severity: N/A
The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417....
Read MorePublished: 2000-02-11
Severity: N/A
The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system pass...
Read MorePublished: 2000-02-10
Severity: N/A
Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service via a large number of connections....
Read MorePublished: 2000-02-08
Severity: N/A
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration....
Read MorePublished: 2000-02-08
Severity: N/A
MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string....
Read MorePublished: 2000-02-08
Severity: N/A
Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL....
Read MorePublished: 2000-02-08
Severity: N/A
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges....
Read MorePublished: 2000-02-07
Severity: N/A
Axis 700 Network Scanner does not properly restrict access to administrator URLs, which allows users to bypass the password protection via a .. (dot d...
Read MorePublished: 2000-02-07
Severity: N/A
The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote attackers to cause a denial of service via a long URL to the servlet...
Read MorePublished: 2000-02-06
Severity: N/A
Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID....
Read MorePublished: 2000-02-05
Severity: N/A
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions....
Read MorePublished: 2000-02-04
Severity: N/A
The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that a...
Read MorePublished: 2000-02-04
Severity: N/A
The Finger Server 0.82 allows remote attackers to execute commands via shell metacharacters....
Read MorePublished: 2000-02-04
Severity: N/A
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST comman...
Read MorePublished: 2000-02-03
Severity: N/A
Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI pro...
Read MorePublished: 2000-02-03
Severity: N/A
surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restricti...
Read MorePublished: 2000-02-03
Severity: N/A
wwwthreads does not properly cleanse numeric data or table names that are passed to SQL queries, which allows remote attackers to gain privileges for ...
Read MorePublished: 2000-02-03
Severity: N/A
The Webspeed configuration program does not properly disable access to the WSMadmin utility, which allows remote attackers to gain privileges via wsis...
Read MorePublished: 2000-02-03
Severity: N/A
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname....
Read MorePublished: 2000-02-02
Severity: N/A
The default installation of Debian GNU/Linux uses an insecure Master Boot Record (MBR) which allows a local user to boot from a floppy disk during the...
Read MorePublished: 2000-02-02
Severity: N/A
Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_b...
Read MorePublished: 2000-02-02
Severity: N/A
Selena Sol WebBanner 4.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 2000-02-01
Severity: N/A
The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The SalesCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The SmartCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that refe...
Read MorePublished: 2000-02-01
Severity: N/A
The EasyCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
Linux apcd program allows local attackers to modify arbitrary files via a symlink attack....
Read MorePublished: 2000-02-01
Severity: N/A
The Intellivend shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The WebSiteTool shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in ...
Read MorePublished: 2000-02-01
Severity: N/A
The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands....
Read MorePublished: 2000-02-01
Severity: N/A
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR co...
Read MorePublished: 2000-02-01
Severity: N/A
The Check It Out shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The @Retail shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The Cart32 shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
The CartIt shopping cart application allows remote users to modify sensitive purchase information via hidden form fields....
Read MorePublished: 2000-02-01
Severity: N/A
GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands....
Read MorePublished: 2000-02-01
Severity: N/A
NetBSD ptrace call on VAX allows local users to gain privileges by modifying the PSL contents in the debugging process....
Read MorePublished: 2000-02-01
Severity: N/A
Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via (1) the pr...
Read MorePublished: 2000-01-31
Severity: N/A
The mcsp Client Site Processor system (MultiCSP) in Standard and Poor's ComStock is installed with several accounts that have no passwords or easily g...
Read MorePublished: 2000-01-31
Severity: N/A
Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function....
Read MorePublished: 2000-01-30
Severity: N/A
The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibl...
Read MorePublished: 2000-01-29
Severity: N/A
The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions....
Read MorePublished: 2000-01-29
Severity: N/A
Firewall-1 does not properly filter script tags, which allows remote attackers to bypass the "Strip Script Tags" restriction by including an extra < i...
Read MorePublished: 2000-01-27
Severity: N/A
The SyGate Remote Management program does not properly restrict access to its administration service, which allows remote attackers to cause a denial ...
Read MorePublished: 2000-01-27
Severity: N/A
Buffer overflow in SCO scohelp program allows remote attackers to execute commands....
Read MorePublished: 2000-01-27
Severity: N/A
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine....
Read MorePublished: 2000-01-26
Severity: N/A
Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command....
Read MorePublished: 2000-01-26
Severity: N/A
The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vuln...
Read MorePublished: 2000-01-26
Severity: N/A
Microsoft Index Server allows remote attackers to determine the real path for a web directory via a request to an Internet Data Query file that does n...
Read MorePublished: 2000-01-26
Severity: N/A
Sample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote attackers to read files via a .. (dot dot) attack....
Read MorePublished: 2000-01-24
Severity: N/A
The PMTU discovery procedure used by HP-UX 10.30 and 11.00 for determining the optimum MTU generates large amounts of traffic in response to small pac...
Read MorePublished: 2000-01-21
Severity: N/A
Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long username or password....
Read MorePublished: 2000-01-21
Severity: N/A
An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5....
Read MorePublished: 2000-01-21
Severity: N/A
IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page....
Read MorePublished: 2000-01-20
Severity: N/A
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded....
Read MorePublished: 2000-01-20
Severity: N/A
Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malform...
Read MorePublished: 2000-01-19
Severity: N/A
The BSD make program allows local users to modify files via a symlink attack when the -j option is being used....
Read MorePublished: 2000-01-18
Severity: N/A
HP VirtualVault with the PHSS_17692 patch allows unprivileged processes to bypass access restrictions via the Trusted Gateway Proxy (TGP)....
Read MorePublished: 2000-01-18
Severity: N/A
The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL....
Read MorePublished: 2000-01-18
Severity: N/A
Netopia Timbuktu Pro sends user IDs and passwords in cleartext, which allows remote attackers to obtain them via sniffing....
Read MorePublished: 2000-01-18
Severity: N/A
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument....
Read MorePublished: 2000-01-17
Severity: N/A
cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to read arbitrary files by specifying the filename in a parameter to the sc...
Read MorePublished: 2000-01-17
Severity: N/A
cgiproc CGI script in Nortel Contivity HTTP server allows remote attackers to cause a denial of service via a malformed URL that includes shell metach...
Read MorePublished: 2000-01-17
Severity: N/A
Buffer overflow in InetServ 3.0 allows remote attackers to execute commands via a long GET request....
Read MorePublished: 2000-01-17
Severity: N/A
Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternat...
Read MorePublished: 2000-01-17
Severity: N/A
VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack....
Read MorePublished: 2000-01-13
Severity: N/A
WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request....
Read MorePublished: 2000-01-13
Severity: N/A
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating mu...
Read MorePublished: 2000-01-12
Severity: N/A
Netscape Navigator uses weak encryption for storing a user's Netscape mail password....
Read MorePublished: 2000-01-12
Severity: N/A
get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program....
Read MorePublished: 2000-01-12
Severity: N/A
NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka "Spoofed LPC Port Request."...
Read MorePublished: 2000-01-12
Severity: N/A
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator t...
Read MorePublished: 2000-01-11
Severity: N/A
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege....
Read MorePublished: 2000-01-11
Severity: N/A
CyberCash Merchant Connection Kit (MCK) allows local users to modify files via a symlink attack....
Read MorePublished: 2000-01-11
Severity: N/A
IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions....
Read MorePublished: 2000-01-11
Severity: N/A
PowerScripts PlusMail CGI program allows remote attackers to execute commands via a password file with improper permissions....
Read MorePublished: 2000-01-10
Severity: N/A
Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message....
Read MorePublished: 2000-01-10
Severity: N/A
AIX techlibss allows local users to overwrite files via a symlink attack....
Read MorePublished: 2000-01-10
Severity: N/A
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute the code by using hexadecimal codes ...
Read MorePublished: 2000-01-08
Severity: N/A
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to...
Read MorePublished: 2000-01-08
Severity: N/A
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the l...
Read MorePublished: 2000-01-07
Severity: N/A
Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, whic...
Read MorePublished: 2000-01-06
Severity: N/A
Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands....
Read MorePublished: 2000-01-06
Severity: N/A
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option....
Read MorePublished: 2000-01-06
Severity: N/A
CuteFTP uses weak encryption to store password information in its tree.dat file....
Read MorePublished: 2000-01-05
Severity: N/A
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi....
Read MorePublished: 2000-01-05
Severity: N/A
Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files....
Read MorePublished: 2000-01-04
Severity: N/A
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories....
Read MorePublished: 2000-01-04
Severity: N/A
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request....
Read MorePublished: 2000-01-04
Severity: N/A
Buffer overflow in Internet Explorer 4.0 via EMBED tag....
Read MorePublished: 2000-01-04
Severity: N/A
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals....
Read MorePublished: 2000-01-04
Severity: N/A
Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file....
Read MorePublished: 2000-01-04
Severity: N/A
The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs....
Read MorePublished: 2000-01-04
Severity: N/A
The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing...
Read MorePublished: 2000-01-04
Severity: N/A
Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack....
Read MorePublished: 2000-01-04
Severity: N/A
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request....
Read MorePublished: 2000-01-04
Severity: N/A
Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information....
Read MorePublished: 2000-01-04
Severity: N/A
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers...
Read MorePublished: 2000-01-04
Severity: N/A
The DTML implementation in the Z Object Publishing Environment (Zope) allows remote attackers to conduct unauthorized activities....
Read MorePublished: 2000-01-04
Severity: N/A
Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC paramet...
Read MorePublished: 2000-01-02
Severity: N/A
The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find...
Read MorePublished: 2000-01-02
Severity: N/A
The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find th...
Read MorePublished: 2000-01-02
Severity: N/A
WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML....
Read MorePublished: 2000-01-01
Severity: N/A
Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable....
Read MorePublished: 2000-01-01
Severity: N/A
The recover program in Solstice Backup allows local users to restore sensitive files....
Read MorePublished: 2000-01-01
Severity: N/A
The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter....
Read MorePublished: 1999-12-31
Severity: N/A
IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL....
Read MorePublished: 1999-12-31
Severity: N/A
Multiple buffer overflows in ISC DHCP Distribution server (dhcpd) 1.0 and 2.0 allow a remote attacker to cause a denial of service (crash) and possibl...
Read MorePublished: 1999-12-31
Severity: N/A
Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number o...
Read MorePublished: 1999-12-31
Severity: N/A
IIS 3.0 and 4.0 on x86 and Alpha allows remote attackers to cause a denial of service (hang) via a malformed GET request, aka the IIS "GET" vulnerabil...
Read MorePublished: 1999-12-31
Severity: N/A
Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users ...
Read MorePublished: 1999-12-31
Severity: N/A
Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote attackers to c...
Read MorePublished: 1999-12-31
Severity: N/A
Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the...
Read MorePublished: 1999-12-31
Severity: N/A
Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain ...
Read MorePublished: 1999-12-31
Severity: N/A
The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which...
Read MorePublished: 1999-12-31
Severity: N/A
Internet Explorer 4 treats a 32-bit number ("dotless IP address") in the a URL as the hostname instead of an IP address, which causes IE to apply Loca...
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to e...
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in Internet Explorer 4.01 and earlier allows remote attackers to execute arbitrary commands via a long URL with the "mk:" protocol, ak...
Read MorePublished: 1999-12-31
Severity: N/A
Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configuration file, which reduces the effective key length ...
Read MorePublished: 1999-12-31
Severity: N/A
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink...
Read MorePublished: 1999-12-31
Severity: N/A
Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges b...
Read MorePublished: 1999-12-31
Severity: N/A
Windows 95, when Remote Administration and File Sharing for NetWare Networks is enabled, creates a share (C$) when an administrator logs in remotely, ...
Read MorePublished: 1999-12-31
Severity: N/A
lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter....
Read MorePublished: 1999-12-31
Severity: N/A
HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web pages on other ports by providing the target page ...
Read MorePublished: 1999-12-31
Severity: N/A
Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration ...
Read MorePublished: 1999-12-31
Severity: HIGH
Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource ex...
Read MorePublished: 1999-12-31
Severity: N/A
Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information Field (RIF...
Read MorePublished: 1999-12-31
Severity: N/A
FTP service in IIS 4.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via many passive (PASV) connections at t...
Read MorePublished: 1999-12-31
Severity: N/A
Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certa...
Read MorePublished: 1999-12-31
Severity: N/A
Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read sensitive data and generate fake web pages for ot...
Read MorePublished: 1999-12-31
Severity: N/A
Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to r...
Read MorePublished: 1999-12-31
Severity: N/A
Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the pathname fo...
Read MorePublished: 1999-12-31
Severity: N/A
SystemSoft SystemWizard package in HP Pavilion PC with Windows 98, and possibly other platforms and operating systems, installs two ActiveX controls t...
Read MorePublished: 1999-12-31
Severity: N/A
Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash) by returning 0.0.0.0 as the IP address for a DNS ...
Read MorePublished: 1999-12-31
Severity: N/A
IIS 3.0 allows remote attackers to cause a denial of service via a request to an ASP page in which the URL contains a large number of / (forward slash...
Read MorePublished: 1999-12-31
Severity: N/A
IIS 4.0 does not properly restrict access for the initial session request from a user's IP address if the address does not resolve to a DNS domain, ak...
Read MorePublished: 1999-12-31
Severity: N/A
Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintext in the TMLBQueue network share, which has insecu...
Read MorePublished: 1999-12-31
Severity: N/A
Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 98 files and effectively inserts data from previous...
Read MorePublished: 1999-12-31
Severity: N/A
An interaction between the AS/400 shared folders feature and Microsoft SNA Server 3.0 and earlier allows users to view each other's folders when the u...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface....
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in nftp FTP client version 1.40 allows remote malicious FTP servers to cause a denial of service, and possibly execute arbitrary comma...
Read MorePublished: 1999-12-31
Severity: N/A
mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump cor...
Read MorePublished: 1999-12-31
Severity: N/A
Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherited by programs such as File Manager that are starte...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration....
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges....
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of se...
Read MorePublished: 1999-12-31
Severity: N/A
Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker to guess....
Read MorePublished: 1999-12-31
Severity: N/A
Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different c...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing....
Read MorePublished: 1999-12-31
Severity: CRITICAL
VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in l...
Read MorePublished: 1999-12-31
Severity: N/A
SAS System 5.18 on VAX/VMS is installed with insecure permissions for its directories and startup file, which allows local users to gain privileges....
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in linuxconf 1.11r11-rh2 on Red Hat Linux 5.1 allows local users to gain root privileges via a long LANG environmental variable....
Read MorePublished: 1999-12-31
Severity: N/A
linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack....
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges....
Read MorePublished: 1999-12-31
Severity: N/A
The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be preve...
Read MorePublished: 1999-12-31
Severity: N/A
netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users t...
Read MorePublished: 1999-12-31
Severity: N/A
gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary fi...
Read MorePublished: 1999-12-31
Severity: N/A
automatic download option in ncftp 2.4.2 FTP client in Red Hat Linux 5.0 and earlier allows remote attackers to execute arbitrary commands via shell m...
Read MorePublished: 1999-12-31
Severity: N/A
Multiple buffer overflows in filter command in Elm 2.4 allows attackers to execute arbitrary commands via (1) long From: headers, (2) long Reply-To: h...
Read MorePublished: 1999-12-31
Severity: N/A
snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive informatio...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability when Network Address Translation (NAT) is enabled in Linux 2.2.10 and earlier with ipchains, or FreeBSD 3.2 with ipfw, allows remote att...
Read MorePublished: 1999-12-31
Severity: N/A
BMC Patrol component, when installed with Compaq Insight Management Agent 4.23 and earlier, or Management Agents for Servers 4.40 and earlier, creates...
Read MorePublished: 1999-12-31
Severity: N/A
When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writabl...
Read MorePublished: 1999-12-31
Severity: N/A
When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global group...
Read MorePublished: 1999-12-31
Severity: N/A
Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which ...
Read MorePublished: 1999-12-31
Severity: N/A
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect par...
Read MorePublished: 1999-12-31
Severity: N/A
Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, wh...
Read MorePublished: 1999-12-31
Severity: N/A
Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2)...
Read MorePublished: 1999-12-31
Severity: N/A
DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a spoofed source address, which produces more traff...
Read MorePublished: 1999-12-31
Severity: N/A
NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root pr...
Read MorePublished: 1999-12-31
Severity: MEDIUM
Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink ...
Read MorePublished: 1999-12-31
Severity: N/A
genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext....
Read MorePublished: 1999-12-31
Severity: N/A
The Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary files....
Read MorePublished: 1999-12-31
Severity: N/A
GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard of the user who has locked the workstation by pasti...
Read MorePublished: 1999-12-31
Severity: N/A
RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specified in the .Rhosts file when a user comes from an ...
Read MorePublished: 1999-12-31
Severity: N/A
thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character i...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files....
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control li...
Read MorePublished: 1999-12-31
Severity: N/A
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control li...
Read MorePublished: 1999-12-31
Severity: N/A
Internet Explorer 4.0 allows remote attackers to read arbitrary text and HTML files on the user's machine via a small IFRAME that uses Dynamic HTML (D...
Read MorePublished: 1999-12-31
Severity: N/A
When a Web site redirects the browser to another site, Internet Explorer 3.02 and 4.0 automatically resends authentication information to the second s...
Read MorePublished: 1999-12-31
Severity: N/A
PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide sh...
Read MorePublished: 1999-12-31
Severity: N/A
A bug in Intel Pentium processor (MMX and Overdrive) allows local users to cause a denial of service (hang) in Intel-based operating systems such as W...
Read MorePublished: 1999-12-31
Severity: N/A
Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair....
Read MorePublished: 1999-12-31
Severity: N/A
sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without authentication....
Read MorePublished: 1999-12-31
Severity: N/A
The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell ...
Read MorePublished: 1999-12-31
Severity: N/A
Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Ope...
Read MorePublished: 1999-12-31
Severity: N/A
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the ...
Read MorePublished: 1999-12-31
Severity: N/A
loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vuln...
Read MorePublished: 1999-12-31
Severity: N/A
/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbi...
Read MorePublished: 1999-12-31
Severity: CRITICAL
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string begi...
Read MorePublished: 1999-12-31
Severity: N/A
Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors....
Read MorePublished: 1999-12-31
Severity: N/A
Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequence...
Read MorePublished: 1999-12-31
Severity: N/A
Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials u...
Read MorePublished: 1999-12-31
Severity: N/A
Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: t...
Read MorePublished: 1999-12-31
Severity: N/A
Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request....
Read MorePublished: 1999-12-31
Severity: N/A
IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys pr...
Read MorePublished: 1999-12-31
Severity: N/A
CascadeView TFTP server allows local users to gain privileges via a symlink attack....
Read MorePublished: 1999-12-30
Severity: N/A
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets....
Read MorePublished: 1999-12-30
Severity: N/A
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable....
Read MorePublished: 1999-12-30
Severity: N/A
Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request....
Read MorePublished: 1999-12-30
Severity: N/A
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover....
Read MorePublished: 1999-12-29
Severity: N/A
Trend Micro PC-Cillin does not restrict access to its internal proxy port, allowing remote attackers to conduct a denial of service....
Read MorePublished: 1999-12-29
Severity: N/A
The bna_pass program in Optivity NETarchitect uses the PATH environmental variable for finding the "rm" program, which allows local users to execute a...
Read MorePublished: 1999-12-29
Severity: N/A
AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program....
Read MorePublished: 1999-12-29
Severity: N/A
Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command....
Read MorePublished: 1999-12-29
Severity: N/A
The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the progr...
Read MorePublished: 1999-12-28
Severity: N/A
Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP...
Read MorePublished: 1999-12-28
Severity: N/A
Denial of service in Savant web server via a null character in the requested URL....
Read MorePublished: 1999-12-28
Severity: N/A
resend command in Majordomo allows local users to gain privileges via shell metacharacters....
Read MorePublished: 1999-12-28
Severity: N/A
Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file....
Read MorePublished: 1999-12-28
Severity: N/A
Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack....
Read MorePublished: 1999-12-27
Severity: N/A
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands....
Read MorePublished: 1999-12-27
Severity: N/A
IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack....
Read MorePublished: 1999-12-27
Severity: N/A
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack....
Read MorePublished: 1999-12-27
Severity: N/A
InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments....
Read MorePublished: 1999-12-27
Severity: N/A
Buffer overflow in aVirt Rover POP3 server 1.1 allows remote attackers to cause a denial of service via a long user name....
Read MorePublished: 1999-12-26
Severity: N/A
FTPPro allows local users to read sensitive information, which is stored in plain text....
Read MorePublished: 1999-12-26
Severity: N/A
WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter....
Read MorePublished: 1999-12-25
Severity: N/A
The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does n...
Read MorePublished: 1999-12-25
Severity: N/A
The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not ...
Read MorePublished: 1999-12-25
Severity: N/A
strace allows local users to read arbitrary files via memory mapped file names....
Read MorePublished: 1999-12-24
Severity: N/A
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font....
Read MorePublished: 1999-12-23
Severity: N/A
RealMedia server allows remote attackers to cause a denial of service via a long ramgen request....
Read MorePublished: 1999-12-23
Severity: N/A
Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind funct...
Read MorePublished: 1999-12-23
Severity: N/A
glFtpD includes a default glftpd user account with a default password and a UID of 0....
Read MorePublished: 1999-12-23
Severity: N/A
glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command....
Read MorePublished: 1999-12-22
Severity: N/A
Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as a...
Read MorePublished: 1999-12-22
Severity: N/A
Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, w...
Read MorePublished: 1999-12-22
Severity: N/A
Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request....
Read MorePublished: 1999-12-22
Severity: N/A
wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file....
Read MorePublished: 1999-12-22
Severity: N/A
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database....
Read MorePublished: 1999-12-22
Severity: N/A
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database....
Read MorePublished: 1999-12-22
Severity: N/A
Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."...
Read MorePublished: 1999-12-22
Severity: N/A
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability....
Read MorePublished: 1999-12-22
Severity: N/A
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Wi...
Read MorePublished: 1999-12-21
Severity: N/A
Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail account...
Read MorePublished: 1999-12-21
Severity: N/A
Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter....
Read MorePublished: 1999-12-21
Severity: N/A
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory....
Read MorePublished: 1999-12-21
Severity: N/A
Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL....
Read MorePublished: 1999-12-21
Severity: N/A
IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access restrictions in third-party software via escape charac...
Read MorePublished: 1999-12-21
Severity: N/A
IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensi...
Read MorePublished: 1999-12-21
Severity: N/A
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string....
Read MorePublished: 1999-12-20
Severity: N/A
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program ...
Read MorePublished: 1999-12-20
Severity: N/A
DNS PRO allows remote attackers to conduct a denial of service via a large number of connections....
Read MorePublished: 1999-12-19
Severity: N/A
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter...
Read MorePublished: 1999-12-19
Severity: N/A
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter....
Read MorePublished: 1999-12-16
Severity: N/A
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords....
Read MorePublished: 1999-12-16
Severity: N/A
Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function w...
Read MorePublished: 1999-12-16
Severity: N/A
Cisco Cache Engine allows an attacker to replace content in the cache....
Read MorePublished: 1999-12-16
Severity: N/A
The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics....
Read MorePublished: 1999-12-16
Severity: N/A
Cisco Cache Engine allows a remote attacker to gain access via a null username and password....
Read MorePublished: 1999-12-16
Severity: N/A
Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command....
Read MorePublished: 1999-12-15
Severity: N/A
classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters....
Read MorePublished: 1999-12-15
Severity: N/A
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form....
Read MorePublished: 1999-12-15
Severity: N/A
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request....
Read MorePublished: 1999-12-14
Severity: N/A
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy....
Read MorePublished: 1999-12-14
Severity: N/A
daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete f...
Read MorePublished: 1999-12-14
Severity: N/A
The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the ...
Read MorePublished: 1999-12-13
Severity: N/A
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed....
Read MorePublished: 1999-12-13
Severity: N/A
War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections....
Read MorePublished: 1999-12-13
Severity: N/A
Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file....
Read MorePublished: 1999-12-12
Severity: N/A
The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL....
Read MorePublished: 1999-12-12
Severity: N/A
The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's s...
Read MorePublished: 1999-12-10
Severity: N/A
The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and m...
Read MorePublished: 1999-12-10
Severity: N/A
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request....
Read MorePublished: 1999-12-09
Severity: N/A
Buffer overflow in Xshipwars xsw program....
Read MorePublished: 1999-12-09
Severity: N/A
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service....
Read MorePublished: 1999-12-09
Severity: N/A
htdig allows remote attackers to execute commands via filenames with shell metacharacters....
Read MorePublished: 1999-12-08
Severity: N/A
Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local fi...
Read MorePublished: 1999-12-08
Severity: N/A
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option....
Read MorePublished: 1999-12-07
Severity: N/A
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode....
Read MorePublished: 1999-12-07
Severity: N/A
Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail....
Read MorePublished: 1999-12-06
Severity: N/A
Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol....
Read MorePublished: 1999-12-06
Severity: N/A
Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name....
Read MorePublished: 1999-12-05
Severity: N/A
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file....
Read MorePublished: 1999-12-05
Severity: N/A
Error messages generated by gdm with the VerboseAuth setting allows an attacker to identify valid users on a system....
Read MorePublished: 1999-12-04
Severity: N/A
UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack....
Read MorePublished: 1999-12-03
Severity: N/A
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail....
Read MorePublished: 1999-12-03
Severity: N/A
UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file....
Read MorePublished: 1999-12-03
Severity: N/A
Buffer overflow in CommuniGatePro via a long string to the HTTP configuration port....
Read MorePublished: 1999-12-03
Severity: N/A
Buffer overflow in UnixWare xauto program allows local users to gain root privilege....
Read MorePublished: 1999-12-03
Severity: N/A
Internet Anywhere POP3 Mail Server allows local users to cause a denial of service via a malformed RETR command....
Read MorePublished: 1999-12-03
Severity: N/A
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys....
Read MorePublished: 1999-12-03
Severity: N/A
ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program....
Read MorePublished: 1999-12-02
Severity: N/A
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission....
Read MorePublished: 1999-12-02
Severity: N/A
The default permissions for Endymion MailMan allow local users to read email or modify files....
Read MorePublished: 1999-12-02
Severity: N/A
IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin....
Read MorePublished: 1999-12-02
Severity: N/A
Internet Explorer 5 allows a remote attacker to modify the IE client's proxy configuration via a malicious Web Proxy Auto-Discovery (WPAD) server....
Read MorePublished: 1999-12-02
Severity: N/A
Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file....
Read MorePublished: 1999-12-02
Severity: N/A
dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files....
Read MorePublished: 1999-12-01
Severity: N/A
NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it....
Read MorePublished: 1999-12-01
Severity: N/A
FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands....
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument....
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in FreeBSD angband allows local users to gain privileges....
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library....
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command....
Read MorePublished: 1999-12-01
Severity: N/A
Denial of service in MDaemon 2.7 via a large number of connection attempts....
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authenticati...
Read MorePublished: 1999-12-01
Severity: N/A
Buffer overflow in FreeBSD gdc program....
Read MorePublished: 1999-12-01
Severity: N/A
login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or doe...
Read MorePublished: 1999-12-01
Severity: N/A
FreeBSD gdc program allows local users to modify files via a symlink attack....
Read MorePublished: 1999-12-01
Severity: N/A
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly....
Read MorePublished: 1999-12-01
Severity: N/A
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack....
Read MorePublished: 1999-12-01
Severity: N/A
FreeBSD mount_union command allows local users to gain root privileges via a symlink attack....
Read MorePublished: 1999-12-01
Severity: N/A
ZBServer Pro allows remote attackers to read source code for executable files by inserting a . (dot) into the URL....
Read MorePublished: 1999-12-01
Severity: N/A
Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin....
Read MorePublished: 1999-11-30
Severity: N/A
Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command....
Read MorePublished: 1999-11-30
Severity: N/A
A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to mo...
Read MorePublished: 1999-11-30
Severity: N/A
Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option....
Read MorePublished: 1999-11-30
Severity: N/A
Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type....
Read MorePublished: 1999-11-29
Severity: N/A
A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords....
Read MorePublished: 1999-11-29
Severity: N/A
Windows NT Task Scheduler installed with Internet Explorer 5 allows a user to gain privileges by modifying the job after it has been scheduled....
Read MorePublished: 1999-11-29
Severity: N/A
Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-11-29
Severity: N/A
Buffer overflow in free internet chess server (FICS) program, xboard....
Read MorePublished: 1999-11-25
Severity: N/A
Buffer overflow in Linux su command gives root access to local users....
Read MorePublished: 1999-11-25
Severity: N/A
Buffer overflow in SCO su program allows local users to gain root access via a long username....
Read MorePublished: 1999-11-25
Severity: N/A
Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivale...
Read MorePublished: 1999-11-24
Severity: N/A
Denial of service in MDaemon WorldClient and WebConfig services via a long URL....
Read MorePublished: 1999-11-24
Severity: N/A
Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor...
Read MorePublished: 1999-11-24
Severity: N/A
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibl...
Read MorePublished: 1999-11-24
Severity: N/A
Cabletron SmartSwitch Router (SSR) 8000 firmware 2.x can only handle 200 ARP requests per second allowing a denial of service attack to succeed with a...
Read MorePublished: 1999-11-23
Severity: N/A
Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to...
Read MorePublished: 1999-11-23
Severity: N/A
Linux gpm program allows local users to cause a denial of service by flooding the /dev/gpmctl device with STREAM sockets....
Read MorePublished: 1999-11-22
Severity: N/A
Buffer overflow in Vermillion FTP Daemon VFTPD 1.23 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via...
Read MorePublished: 1999-11-20
Severity: N/A
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable....
Read MorePublished: 1999-11-19
Severity: N/A
Denial of service in Linux syslogd via a large number of connections....
Read MorePublished: 1999-11-19
Severity: N/A
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet....
Read MorePublished: 1999-11-19
Severity: N/A
ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain ...
Read MorePublished: 1999-11-18
Severity: N/A
Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name....
Read MorePublished: 1999-11-18
Severity: N/A
Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a ma...
Read MorePublished: 1999-11-17
Severity: N/A
Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet....
Read MorePublished: 1999-11-17
Severity: N/A
tin 1.40 creates the .tin directory with insecure permissions, which allows local users to read passwords from the .inputhistory file....
Read MorePublished: 1999-11-17
Severity: N/A
Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) via a long (1) user name or (2) password....
Read MorePublished: 1999-11-17
Severity: N/A
Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word....
Read MorePublished: 1999-11-16
Severity: N/A
Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the ...
Read MorePublished: 1999-11-16
Severity: N/A
Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not proper...
Read MorePublished: 1999-11-16
Severity: N/A
Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented UR...
Read MorePublished: 1999-11-16
Severity: HIGH
Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from ...
Read MorePublished: 1999-11-15
Severity: N/A
Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an ...
Read MorePublished: 1999-11-14
Severity: N/A
Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote mal...
Read MorePublished: 1999-11-14
Severity: N/A
ProSoft Netware Client 5.12 on Macintosh MacOS 9 does not automatically log a user out of the NDS tree when the user logs off the system, which allows...
Read MorePublished: 1999-11-13
Severity: N/A
The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands....
Read MorePublished: 1999-11-12
Severity: N/A
Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the ...
Read MorePublished: 1999-11-12
Severity: N/A
The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL...
Read MorePublished: 1999-11-11
Severity: N/A
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka...
Read MorePublished: 1999-11-10
Severity: N/A
Buffer overflow in BIND 8.2 via NXT records....
Read MorePublished: 1999-11-10
Severity: N/A
Denial of service in BIND named via malformed SIG records....
Read MorePublished: 1999-11-10
Severity: N/A
Denial of service in BIND by improperly closing TCP sessions via so_linger....
Read MorePublished: 1999-11-10
Severity: N/A
Denial of service in BIND named via consuming more than "fdmax" file descriptors....
Read MorePublished: 1999-11-10
Severity: N/A
Denial of service in BIND named via maxdname....
Read MorePublished: 1999-11-10
Severity: N/A
Denial of service in BIND named via naptr....
Read MorePublished: 1999-11-10
Severity: N/A
Buffer overflows in Xtramail 1.11 allow attackers to cause a denial of service (crash) and possibly execute arbitrary commands via (1) a long PASS com...
Read MorePublished: 1999-11-10
Severity: N/A
Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of servi...
Read MorePublished: 1999-11-09
Severity: N/A
Buffer overflow in NFS server on Linux allows attackers to execute commands via a long pathname....
Read MorePublished: 1999-11-09
Severity: N/A
Whois Internic Lookup program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry....
Read MorePublished: 1999-11-09
Severity: N/A
Matt's Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry....
Read MorePublished: 1999-11-09
Severity: N/A
CC Whois program whois.cgi allows remote attackers to execute commands via shell metacharacters in the domain entry....
Read MorePublished: 1999-11-09
Severity: N/A
Vulnerability in StackGuard before 1.21 allows remote attackers to bypass the Random and Terminator Canary security mechanisms by using a non-linear a...
Read MorePublished: 1999-11-09
Severity: N/A
Buffer overflow in IrfanView32 3.07 and earlier allows attackers to execute arbitrary commands via a long string after the "8BPS" image type in a Phot...
Read MorePublished: 1999-11-08
Severity: N/A
FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument....
Read MorePublished: 1999-11-08
Severity: N/A
Buffer overflow in FreeBSD seyon via HOME environmental variable, -emulator argument, -modems argument, or the GUI....
Read MorePublished: 1999-11-08
Severity: N/A
cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administra...
Read MorePublished: 1999-11-08
Severity: N/A
bigconf.conf in F5 BIG/ip 2.1.2 and earlier allows remote attackers to read arbitrary files by specifying the target file in the "file" parameter....
Read MorePublished: 1999-11-08
Severity: N/A
A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server....
Read MorePublished: 1999-11-07
Severity: N/A
A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute a...
Read MorePublished: 1999-11-07
Severity: N/A
Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) via a long password argument to the login.htm file i...
Read MorePublished: 1999-11-04
Severity: N/A
Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port....
Read MorePublished: 1999-11-04
Severity: N/A
FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack....
Read MorePublished: 1999-11-04
Severity: N/A
Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and passwo...
Read MorePublished: 1999-11-04
Severity: N/A
Buffer overflows in Windows NT 4.0 print spooler allow remote attackers to gain privileges or cause a denial of service via a malformed spooler reques...
Read MorePublished: 1999-11-04
Severity: N/A
The Windows NT 4.0 print spooler allows a local user to execute arbitrary commands due to inappropriate permissions that allow the user to specify an ...
Read MorePublished: 1999-11-04
Severity: N/A
Palm Pilot HotSync Manager 3.0.4 in Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a lo...
Read MorePublished: 1999-11-04
Severity: N/A
Buffer overflow in faxalter in hylafax 4.0.2 allows local users to gain privileges via a long -m command line argument....
Read MorePublished: 1999-11-04
Severity: N/A
Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a ...
Read MorePublished: 1999-11-04
Severity: N/A
Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root privileges via a long -f parameter, a different vulne...
Read MorePublished: 1999-11-03
Severity: N/A
Alibaba web server allows remote attackers to execute commands via a pipe character in a malformed URL....
Read MorePublished: 1999-11-03
Severity: N/A
Buffer overflow in BFTelnet allows remote attackers to cause a denial of service via a long username....
Read MorePublished: 1999-11-02
Severity: N/A
Buffer overflow in Yamaha MidiPlug via a Text variable in an EMBED tag....
Read MorePublished: 1999-11-02
Severity: N/A
AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell meta...
Read MorePublished: 1999-11-02
Severity: N/A
Buffer overflow in uum program for Canna input system allows local users to gain root privileges....
Read MorePublished: 1999-11-02
Severity: N/A
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges....
Read MorePublished: 1999-11-02
Severity: N/A
Buffer overflow in IBM HomePagePrint 1.0.7 for Windows98J allows a malicious Web site to execute arbitrary code on a viewer's system via a long IMG_SR...
Read MorePublished: 1999-11-01
Severity: N/A
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doe...
Read MorePublished: 1999-11-01
Severity: N/A
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing....
Read MorePublished: 1999-11-01
Severity: N/A
HP Secure Web Console uses weak encryption....
Read MorePublished: 1999-11-01
Severity: N/A
Buffer overflow in SCO UnixWare Xsco command via a long argument....
Read MorePublished: 1999-11-01
Severity: N/A
Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server...
Read MorePublished: 1999-11-01
Severity: N/A
Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled sessions via the programmer's switch or CMD-PWR key...
Read MorePublished: 1999-11-01
Severity: N/A
runtar in the Amanda backup system used in various UNIX operating systems executes tar with root privileges, which allows a user to overwrite or read ...
Read MorePublished: 1999-10-31
Severity: N/A
Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands ...
Read MorePublished: 1999-10-30
Severity: N/A
Buffer overflow in Skyfull mail server via MAIL FROM command....
Read MorePublished: 1999-10-29
Severity: N/A
Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO c...
Read MorePublished: 1999-10-28
Severity: N/A
Falcon web server allows remote attackers to determine the absolute path of the web root via long file names....
Read MorePublished: 1999-10-28
Severity: N/A
URL Live! web server allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-10-28
Severity: N/A
Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories....
Read MorePublished: 1999-10-28
Severity: N/A
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certif...
Read MorePublished: 1999-10-26
Severity: N/A
Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-10-26
Severity: N/A
genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767....
Read MorePublished: 1999-10-26
Severity: N/A
Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selectin...
Read MorePublished: 1999-10-26
Severity: N/A
LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1) SamrOpenDomain, (2) S...
Read MorePublished: 1999-10-25
Severity: N/A
Zeus web server allows remote attackers to read arbitrary files by specifying the file name in an option to the search engine....
Read MorePublished: 1999-10-25
Severity: N/A
The Zeus web server administrative interface uses weak encryption for its passwords....
Read MorePublished: 1999-10-24
Severity: N/A
IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections....
Read MorePublished: 1999-10-23
Severity: N/A
Buffer overflow in rpc.yppasswdd allows a local user to gain privileges via MD5 hash generation....
Read MorePublished: 1999-10-23
Severity: N/A
ypserv allows a local user to modify the GECOS and login shells of other users....
Read MorePublished: 1999-10-23
Severity: N/A
ypserv allows local administrators to modify password tables....
Read MorePublished: 1999-10-22
Severity: N/A
Buffer overflow in OmniHTTPd CGI program imagemap.exe allows remote attackers to execute commands....
Read MorePublished: 1999-10-22
Severity: N/A
Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on t...
Read MorePublished: 1999-10-22
Severity: N/A
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges....
Read MorePublished: 1999-10-22
Severity: N/A
Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory....
Read MorePublished: 1999-10-21
Severity: N/A
The Microsoft Java Virtual Machine allows a malicious Java applet to execute arbitrary commands outside of the sandbox environment....
Read MorePublished: 1999-10-21
Severity: N/A
Denial of service in Axent Raptor firewall via malformed zero-length IP options....
Read MorePublished: 1999-10-21
Severity: N/A
Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operat...
Read MorePublished: 1999-10-20
Severity: N/A
Firewall-1 does not properly restrict access to LDAP attributes....
Read MorePublished: 1999-10-18
Severity: N/A
When BSDI patches for Gauntlet 5.0 BSDI are installed in a particular order, Gauntlet allows remote attackers to bypass firewall access restrictions, ...
Read MorePublished: 1999-10-17
Severity: N/A
ICQ ActiveList Server allows remote attackers to cause a denial of service (crash) via malformed packets to the server's UDP port....
Read MorePublished: 1999-10-15
Severity: N/A
Buffer overflow in OpenLink 3.2 allows remote attackers to gain privileges via a long GET request to the web configurator....
Read MorePublished: 1999-10-13
Severity: N/A
HTTP server for Xerox DocuColor 4 LP allows remote attackers to cause a denial of service (hang) via a long URL that contains a large number of . char...
Read MorePublished: 1999-10-13
Severity: N/A
Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts....
Read MorePublished: 1999-10-11
Severity: N/A
userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack....
Read MorePublished: 1999-10-08
Severity: N/A
Directory traversal vulnerability in Jana proxy web server 1.40 allows remote attackers to ready arbitrary files via a "......" (modified dot dot) att...
Read MorePublished: 1999-10-08
Severity: N/A
Directory traversal vulnerability in Jana proxy web server 1.45 allows remote attackers to ready arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-10-08
Severity: N/A
The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service....
Read MorePublished: 1999-10-07
Severity: N/A
PAM configuration file for rlogin in Red Hat Linux 6.1 and earlier includes a less restrictive rule before a more restrictive one, which allows users ...
Read MorePublished: 1999-10-07
Severity: N/A
Xsession in Red Hat Linux 6.1 and earlier can allow local users with restricted accounts to bypass execution of the .xsession file by starting kde, gn...
Read MorePublished: 1999-10-07
Severity: N/A
Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursive parsing and referer tags in RXML....
Read MorePublished: 1999-10-06
Severity: N/A
Hybrid Network cable modems do not include an authentication mechanism for administration, allowing remote attackers to compromise the system through ...
Read MorePublished: 1999-10-06
Severity: N/A
NFS daemon (nfsd.exe) for Omni-NFS/X 6.1 allows remote attackers to cause a denial of service (resource exhaustion) via certain packets, possibly with...
Read MorePublished: 1999-10-05
Severity: N/A
Auto_FTP.pl script in Auto_FTP 0.2 stores usernames and passwords in plaintext in the auto_ftp.conf configuration file....
Read MorePublished: 1999-10-05
Severity: N/A
Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions, which allows local users to (1) send arbitra...
Read MorePublished: 1999-10-05
Severity: N/A
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and ...
Read MorePublished: 1999-10-04
Severity: N/A
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes....
Read MorePublished: 1999-10-04
Severity: N/A
Macromedia "The Matrix" screen saver on Windows 95 with the "Password protected" option enabled allows attackers with physical access to the machine t...
Read MorePublished: 1999-10-04
Severity: N/A
Buffer overflow in Sambar Web Server 4.2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long H...
Read MorePublished: 1999-10-04
Severity: N/A
shell-lock in Cactus Software Shell Lock uses weak encryption (trivial encoding) which allows attackers to easily decrypt and obtain the source code....
Read MorePublished: 1999-10-04
Severity: N/A
shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a ...
Read MorePublished: 1999-10-04
Severity: N/A
RPMMail before 1.4 allows remote attackers to execute commands via an e-mail message with shell metacharacters in the "MAIL FROM" command....
Read MorePublished: 1999-10-01
Severity: N/A
Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file....
Read MorePublished: 1999-10-01
Severity: N/A
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME....
Read MorePublished: 1999-10-01
Severity: N/A
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via macro variables in a message file....
Read MorePublished: 1999-10-01
Severity: N/A
Denial of service in WU-FTPD via the SITE NEWER command, which does not free memory properly....
Read MorePublished: 1999-10-01
Severity: N/A
TeamTrack web server allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-10-01
Severity: N/A
Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extrac...
Read MorePublished: 1999-10-01
Severity: N/A
Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service (crash) via (1) LIST, (2) TOP, or (3) UIDL commands usin...
Read MorePublished: 1999-10-01
Severity: N/A
Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username....
Read MorePublished: 1999-10-01
Severity: N/A
Buffer overflow in Yahoo Pager/Messenger client allows remote attackers to cause a denial of service via a long URL within a message....
Read MorePublished: 1999-09-30
Severity: N/A
Buffer overflow in Mediahouse Statistics Server allows remote attackers to execute commands....
Read MorePublished: 1999-09-30
Severity: N/A
Mediahouse Statistics Server allows remote attackers to read the administrator password, which is stored in cleartext in the ss.cfg file....
Read MorePublished: 1999-09-30
Severity: N/A
Buffer overflow in w3-auth CGI program in miniSQL package allows remote attackers to execute arbitrary commands via an HTTP request with (1) a long UR...
Read MorePublished: 1999-09-30
Severity: N/A
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument....
Read MorePublished: 1999-09-29
Severity: N/A
ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, which could allow local users to gain privileges by re...
Read MorePublished: 1999-09-28
Severity: N/A
Buffer overflow in AIX ftpd in the libc library....
Read MorePublished: 1999-09-28
Severity: N/A
mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges....
Read MorePublished: 1999-09-27
Severity: N/A
Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME messages....
Read MorePublished: 1999-09-27
Severity: N/A
Buffer overflow in Adobe Acrobat ActiveX control (pdf.ocx, PDF.PdfCtrl.1) 1.3.188 for Acrobat Reader 4.0 allows remote attackers to execute arbitrary ...
Read MorePublished: 1999-09-26
Severity: N/A
Arkiea nlservd allows remote attackers to conduct a denial of service....
Read MorePublished: 1999-09-24
Severity: N/A
Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick
Published: 1999-09-24
Severity: N/A
Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker to execute arbitrary commands via the methods (1) v...
Read MorePublished: 1999-09-24
Severity: N/A
Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for Internet Explorer 4.01 and 5 allows remote attackers...
Read MorePublished: 1999-09-23
Severity: N/A
IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions....
Read MorePublished: 1999-09-23
Severity: N/A
Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable....
Read MorePublished: 1999-09-23
Severity: N/A
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_ent...
Read MorePublished: 1999-09-23
Severity: N/A
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malforme...
Read MorePublished: 1999-09-23
Severity: N/A
Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeaker argument in programs such as nethack....
Read MorePublished: 1999-09-23
Severity: N/A
Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environme...
Read MorePublished: 1999-09-22
Severity: N/A
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack....
Read MorePublished: 1999-09-22
Severity: N/A
FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files....
Read MorePublished: 1999-09-21
Severity: N/A
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field....
Read MorePublished: 1999-09-20
Severity: N/A
Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed R...
Read MorePublished: 1999-09-17
Severity: N/A
The SSH authentication agent follows symlinks via a UNIX domain socket....
Read MorePublished: 1999-09-17
Severity: N/A
The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager....
Read MorePublished: 1999-09-16
Severity: N/A
Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others....
Read MorePublished: 1999-09-16
Severity: N/A
iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a code parsing error....
Read MorePublished: 1999-09-16
Severity: N/A
sccw allows local users to read arbitrary files....
Read MorePublished: 1999-09-16
Severity: N/A
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers....
Read MorePublished: 1999-09-16
Severity: N/A
WWWBoard has a default username and default password....
Read MorePublished: 1999-09-15
Severity: N/A
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols...
Read MorePublished: 1999-09-13
Severity: N/A
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands....
Read MorePublished: 1999-09-13
Severity: N/A
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack....
Read MorePublished: 1999-09-13
Severity: N/A
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name....
Read MorePublished: 1999-09-13
Severity: N/A
Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account....
Read MorePublished: 1999-09-13
Severity: N/A
Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch....
Read MorePublished: 1999-09-13
Severity: N/A
Buffer overflow in FuseMAIL POP service via long USER and PASS commands....
Read MorePublished: 1999-09-13
Severity: N/A
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument....
Read MorePublished: 1999-09-13
Severity: N/A
guestbook.pl cleanses user-inserted SSI commands by removing text between "" separators, which allows remote attackers to execute arbitr...
Read MorePublished: 1999-09-12
Severity: N/A
Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attac...
Read MorePublished: 1999-09-10
Severity: N/A
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavori...
Read MorePublished: 1999-09-10
Severity: N/A
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadverte...
Read MorePublished: 1999-09-10
Severity: N/A
The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5)...
Read MorePublished: 1999-09-09
Severity: N/A
SCO Doctor allows local users to gain root privileges through a Tools option....
Read MorePublished: 1999-09-09
Severity: N/A
Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter....
Read MorePublished: 1999-09-08
Severity: N/A
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable....
Read MorePublished: 1999-09-07
Severity: N/A
Nosque MsgCore 2.14 stores passwords in cleartext: (1) the administrator password in the AdmPasswd registry key, and (2) user passwords in the Userbas...
Read MorePublished: 1999-09-05
Severity: N/A
gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file....
Read MorePublished: 1999-09-05
Severity: N/A
FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, ...
Read MorePublished: 1999-09-03
Severity: N/A
UnityMail allows remote attackers to conduct a denial of service via a large number of MIME headers....
Read MorePublished: 1999-09-03
Severity: N/A
Apache allows remote attackers to conduct a denial of service via a large number of MIME headers....
Read MorePublished: 1999-09-02
Severity: N/A
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option....
Read MorePublished: 1999-09-02
Severity: N/A
Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.50 modifies the legal notice caption (LegalNoticeCa...
Read MorePublished: 1999-09-02
Severity: N/A
A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offer...
Read MorePublished: 1999-09-02
Severity: N/A
FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) with a large number accesses of an NFS v3 mounted dir...
Read MorePublished: 1999-09-01
Severity: N/A
The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as de...
Read MorePublished: 1999-09-01
Severity: N/A
Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands....
Read MorePublished: 1999-09-01
Severity: N/A
Buffer overflow in INN inews program....
Read MorePublished: 1999-09-01
Severity: N/A
The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect....
Read MorePublished: 1999-09-01
Severity: N/A
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the...
Read MorePublished: 1999-08-31
Severity: N/A
Buffer overflows in Mars NetWare Emulation (NWE, mars_nwe) package via long directory names....
Read MorePublished: 1999-08-31
Severity: N/A
A non-default configuration in TenFour TFS Gateway 4.0 allows an attacker to cause a denial of service via messages with incorrect sender and recipien...
Read MorePublished: 1999-08-30
Severity: N/A
E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version...
Read MorePublished: 1999-08-30
Severity: N/A
Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) th...
Read MorePublished: 1999-08-27
Severity: N/A
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested ...
Read MorePublished: 1999-08-27
Severity: N/A
Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows...
Read MorePublished: 1999-08-26
Severity: N/A
Denial of service in Debian IRC Epic/epic4 client via a long string....
Read MorePublished: 1999-08-25
Severity: N/A
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable....
Read MorePublished: 1999-08-25
Severity: N/A
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable....
Read MorePublished: 1999-08-25
Severity: N/A
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file....
Read MorePublished: 1999-08-25
Severity: N/A
Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information ...
Read MorePublished: 1999-08-24
Severity: N/A
Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which is world-readable and accessible in the document ro...
Read MorePublished: 1999-08-24
Severity: N/A
Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and session hijackin...
Read MorePublished: 1999-08-23
Severity: N/A
The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users....
Read MorePublished: 1999-08-22
Severity: N/A
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR....
Read MorePublished: 1999-08-22
Severity: N/A
Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by e...
Read MorePublished: 1999-08-22
Severity: N/A
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows...
Read MorePublished: 1999-08-21
Severity: N/A
The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary com...
Read MorePublished: 1999-08-21
Severity: N/A
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files....
Read MorePublished: 1999-08-20
Severity: N/A
Trn allows local users to overwrite other users' files via symlinks....
Read MorePublished: 1999-08-20
Severity: N/A
Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to ga...
Read MorePublished: 1999-08-20
Severity: N/A
Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file....
Read MorePublished: 1999-08-20
Severity: N/A
The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability....
Read MorePublished: 1999-08-20
Severity: N/A
Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows re...
Read MorePublished: 1999-08-19
Severity: N/A
When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. ...
Read MorePublished: 1999-08-19
Severity: N/A
The logging facility of the Debian smtp-refuser package allows local users to delete arbitrary files using symbolic links....
Read MorePublished: 1999-08-19
Severity: N/A
A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication....
Read MorePublished: 1999-08-19
Severity: N/A
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable....
Read MorePublished: 1999-08-19
Severity: N/A
QMS CrownNet Unix Utilities for 2060 allows root to log on without a password....
Read MorePublished: 1999-08-18
Severity: N/A
Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler....
Read MorePublished: 1999-08-18
Severity: N/A
Denial of service in BSDi Symmetric Multiprocessing (SMP) when an fstat call is made when the system has a high CPU load....
Read MorePublished: 1999-08-17
Severity: N/A
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories....
Read MorePublished: 1999-08-16
Severity: N/A
A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service....
Read MorePublished: 1999-08-16
Severity: N/A
Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument....
Read MorePublished: 1999-08-16
Severity: N/A
dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find ...
Read MorePublished: 1999-08-13
Severity: N/A
Buffer overflow in hybrid-6 IRC server commonly used on EFnet allows remote attackers to execute commands via m_invite invite option....
Read MorePublished: 1999-08-12
Severity: N/A
Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function....
Read MorePublished: 1999-08-12
Severity: N/A
3Com HiPer Access Router Card (HiperARC) 4.0 through 4.2.29 allows remote attackers to cause a denial of service (reboot) via a flood of IAC packets t...
Read MorePublished: 1999-08-11
Severity: N/A
Denial of service in AIX ptrace system call allows local users to crash the system....
Read MorePublished: 1999-08-11
Severity: N/A
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations....
Read MorePublished: 1999-08-11
Severity: N/A
Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext....
Read MorePublished: 1999-08-11
Severity: N/A
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers....
Read MorePublished: 1999-08-11
Severity: N/A
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes....
Read MorePublished: 1999-08-10
Severity: N/A
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain...
Read MorePublished: 1999-08-09
Severity: N/A
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve....
Read MorePublished: 1999-08-09
Severity: N/A
Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host....
Read MorePublished: 1999-08-09
Severity: N/A
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack....
Read MorePublished: 1999-08-09
Severity: N/A
Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service....
Read MorePublished: 1999-08-08
Severity: N/A
Buffer overflow in ALMail32 POP3 client via From: or To: headers....
Read MorePublished: 1999-08-08
Severity: N/A
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages....
Read MorePublished: 1999-08-07
Severity: N/A
FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct bru...
Read MorePublished: 1999-08-06
Severity: N/A
Microsoft Exchange 5.5 allows a remote attacker to relay email (i.e. spam) using encapsulated SMTP addresses, even if the anti-relaying features are e...
Read MorePublished: 1999-08-06
Severity: N/A
A kernel leak in the OpenBSD kernel allows IPsec packets to be sent unencrypted....
Read MorePublished: 1999-08-05
Severity: N/A
The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code....
Read MorePublished: 1999-08-05
Severity: N/A
dfire.cgi script in Dragon-Fire IDS allows remote users to execute commands via shell metacharacters....
Read MorePublished: 1999-08-03
Severity: N/A
Buffer overflow in ToxSoft NextFTP client through CWD command....
Read MorePublished: 1999-08-03
Severity: N/A
The WebRamp web administration utility has a default password....
Read MorePublished: 1999-08-03
Severity: N/A
OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices....
Read MorePublished: 1999-08-01
Severity: N/A
Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics....
Read MorePublished: 1999-08-01
Severity: N/A
FTP client in Midnight Commander (mc) before 4.5.11 stores usernames and passwords for visited sites in plaintext in the world-readable history file, ...
Read MorePublished: 1999-07-30
Severity: N/A
Denial of service in Gauntlet Firewall via a malformed ICMP packet....
Read MorePublished: 1999-07-30
Severity: N/A
Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the sourc...
Read MorePublished: 1999-07-30
Severity: N/A
Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file....
Read MorePublished: 1999-07-30
Severity: N/A
.sbstart startup script in AcuShop Salesbuilder is world writable, which allows local users to gain privileges by appending commands to the file....
Read MorePublished: 1999-07-29
Severity: N/A
Buffer overflow in Microsoft Phone Dialer (dialer.exe), via a malformed dialer entry in the dialer.ini file....
Read MorePublished: 1999-07-29
Severity: N/A
Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service vi...
Read MorePublished: 1999-07-29
Severity: N/A
WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain ...
Read MorePublished: 1999-07-28
Severity: N/A
Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malici...
Read MorePublished: 1999-07-28
Severity: N/A
The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability....
Read MorePublished: 1999-07-27
Severity: N/A
IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker t...
Read MorePublished: 1999-07-25
Severity: N/A
The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attacker...
Read MorePublished: 1999-07-23
Severity: N/A
Denial of service in Windows NT messenger service through a long username....
Read MorePublished: 1999-07-21
Severity: N/A
Denial of service in Samba NETBIOS name service daemon (nmbd)....
Read MorePublished: 1999-07-21
Severity: N/A
Buffer overflow in Samba smbd program via a malformed message command....
Read MorePublished: 1999-07-21
Severity: N/A
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a ...
Read MorePublished: 1999-07-21
Severity: N/A
Delegate proxy 5.9.3 and earlier creates files and directories in the DGROOT with world-writable permissions....
Read MorePublished: 1999-07-20
Severity: N/A
Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request....
Read MorePublished: 1999-07-20
Severity: N/A
Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execu...
Read MorePublished: 1999-07-20
Severity: N/A
Vulnerability in a script in Texas A&M University (TAMU) Tiger allows local users to execute arbitrary commands as the Tiger user, usually root....
Read MorePublished: 1999-07-19
Severity: N/A
The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges....
Read MorePublished: 1999-07-19
Severity: N/A
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows...
Read MorePublished: 1999-07-19
Severity: N/A
dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files....
Read MorePublished: 1999-07-15
Severity: N/A
Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spo...
Read MorePublished: 1999-07-15
Severity: N/A
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g.,...
Read MorePublished: 1999-07-14
Severity: N/A
Joe's Own Editor (joe) 2.8 sets the world-readable permission on its crash-save file, DEADJOE, which could allow local users to read files that were b...
Read MorePublished: 1999-07-13
Severity: N/A
BMC PATROL SNMP Agent before 3.2.07 allows local users to create arbitrary world-writeable files as root by specifying the target file as the second a...
Read MorePublished: 1999-07-11
Severity: N/A
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel mem...
Read MorePublished: 1999-07-10
Severity: N/A
MacOS uses weak encryption for passwords that are stored in the Users & Groups Data File....
Read MorePublished: 1999-07-09
Severity: N/A
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cooki...
Read MorePublished: 1999-07-07
Severity: N/A
IIS 3.x and 4.x does not distinguish between pages requiring encryption and those that do not, which allows remote attackers to cause a denial of serv...
Read MorePublished: 1999-07-06
Severity: N/A
A Windows NT user can disable the keyboard or mouse by directly calling the IOCTLs which control them....
Read MorePublished: 1999-07-06
Severity: N/A
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake....
Read MorePublished: 1999-07-06
Severity: N/A
The Sun HotSpot Performance Engine VM allows a remote attacker to cause a denial of service on any server running HotSpot via a URL that includes the ...
Read MorePublished: 1999-07-03
Severity: N/A
Denial of service in various Windows systems via malformed, fragmented IGMP packets....
Read MorePublished: 1999-07-02
Severity: N/A
BSD 4.4 based operating systems, when running at security level 1, allow the root user to clear the immutable and append-only flags for files by unmou...
Read MorePublished: 1999-07-01
Severity: N/A
Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x....
Read MorePublished: 1999-07-01
Severity: N/A
HP CDE program includes the current directory in root's PATH variable....
Read MorePublished: 1999-07-01
Severity: N/A
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd)....
Read MorePublished: 1999-07-01
Severity: N/A
The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization....
Read MorePublished: 1999-07-01
Severity: N/A
Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set....
Read MorePublished: 1999-06-30
Severity: N/A
Denial of service in RAS/PPTP on NT systems....
Read MorePublished: 1999-06-30
Severity: N/A
An attacker can conduct a denial of service in Windows NT by executing a program with a malformed file image header....
Read MorePublished: 1999-06-30
Severity: N/A
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause ...
Read MorePublished: 1999-06-29
Severity: N/A
WebTrends software stores account names and passwords in a file which does not have restricted access permissions....
Read MorePublished: 1999-06-28
Severity: N/A
MBone SDR Package allows remote attackers to execute commands via shell metacharacters in Session Initiation Protocol (SIP) messages....
Read MorePublished: 1999-06-28
Severity: N/A
Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORE...
Read MorePublished: 1999-06-28
Severity: N/A
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicio...
Read MorePublished: 1999-06-26
Severity: N/A
Buffer overflow in VMWare 1.0.1 for Linux via a long HOME environmental variable....
Read MorePublished: 1999-06-25
Severity: N/A
Buffer overflow in Xi Graphics Accelerated-X server allows local users to gain root access via a long display or query parameter....
Read MorePublished: 1999-06-25
Severity: N/A
Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which c...
Read MorePublished: 1999-06-24
Severity: N/A
Buffer overflows in Red Hat net-tools package....
Read MorePublished: 1999-06-24
Severity: N/A
Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, which could allow local users to gain privileges....
Read MorePublished: 1999-06-23
Severity: N/A
The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user input....
Read MorePublished: 1999-06-23
Severity: N/A
The KDE klock program allows local users to unlock a session using malformed input....
Read MorePublished: 1999-06-23
Severity: N/A
SpectroSERVER in Cabletron Spectrum Enterprise Manager 5.0 installs a directory tree with insecure permissions, which allows local users to replace a ...
Read MorePublished: 1999-06-22
Severity: N/A
The Debian mailman package uses weak authentication, which allows attackers to gain privileges....
Read MorePublished: 1999-06-16
Severity: N/A
Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions....
Read MorePublished: 1999-06-16
Severity: N/A
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET reque...
Read MorePublished: 1999-06-12
Severity: N/A
The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack....
Read MorePublished: 1999-06-11
Severity: N/A
The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges....
Read MorePublished: 1999-06-10
Severity: N/A
Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword ...
Read MorePublished: 1999-06-10
Severity: N/A
useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users t...
Read MorePublished: 1999-06-09
Severity: N/A
ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid ...
Read MorePublished: 1999-06-09
Severity: N/A
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to con...
Read MorePublished: 1999-06-08
Severity: N/A
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target file...
Read MorePublished: 1999-06-07
Severity: N/A
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be use...
Read MorePublished: 1999-06-06
Severity: N/A
Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attack...
Read MorePublished: 1999-06-05
Severity: N/A
The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporar...
Read MorePublished: 1999-06-03
Severity: N/A
The Economist screen saver 1999 with the "Password Protected" option enabled allows users with physical access to the machine to bypass the screen sav...
Read MorePublished: 1999-06-03
Severity: N/A
A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flo...
Read MorePublished: 1999-06-01
Severity: N/A
Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301....
Read MorePublished: 1999-06-01
Severity: N/A
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths....
Read MorePublished: 1999-06-01
Severity: N/A
CDomain whois_raw.cgi whois CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the fqdn parameter....
Read MorePublished: 1999-06-01
Severity: N/A
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys....
Read MorePublished: 1999-06-01
Severity: N/A
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices....
Read MorePublished: 1999-06-01
Severity: N/A
Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges....
Read MorePublished: 1999-06-01
Severity: N/A
Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name....
Read MorePublished: 1999-05-31
Severity: N/A
nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a possible denial of s...
Read MorePublished: 1999-05-31
Severity: N/A
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset ref...
Read MorePublished: 1999-05-28
Severity: N/A
Symantec pcAnywhere 8.0 allows remote attackers to cause a denial of service (CPU utilization) via a large amount of data to port 5631....
Read MorePublished: 1999-05-27
Severity: N/A
Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option....
Read MorePublished: 1999-05-27
Severity: N/A
Buffer overflow in Internet Explorer 5 allows remote attackers to execute commands via a malformed Favorites icon....
Read MorePublished: 1999-05-27
Severity: N/A
The Preloader ActiveX control used by Internet Explorer allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-26
Severity: N/A
The web components of Compaq Management Agents and the Compaq Survey Utility allow a remote attacker to read arbitrary files via a .. (dot dot) attack...
Read MorePublished: 1999-05-26
Severity: N/A
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command....
Read MorePublished: 1999-05-26
Severity: N/A
NTMail allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1999-05-25
Severity: N/A
The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack....
Read MorePublished: 1999-05-25
Severity: N/A
IBM Netfinity Remote Control allows local users to gain administrator privileges by starting programs from the process manager, which runs with system...
Read MorePublished: 1999-05-24
Severity: N/A
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser...
Read MorePublished: 1999-05-23
Severity: N/A
Buffer overflow in SmartDesk WebSuite allows remote attackers to cause a denial of service via a long URL....
Read MorePublished: 1999-05-21
Severity: N/A
Control Panel "Password Security" option for Apple Powerbooks allows attackers with physical access to the machine to bypass the security by booting i...
Read MorePublished: 1999-05-20
Severity: N/A
Buffer overflow in Remote Access Service (RAS) client allows an attacker to execute commands or cause a denial of service via a malformed phonebook en...
Read MorePublished: 1999-05-19
Severity: N/A
SGI IRIX midikeys program allows local users to modify arbitrary files via a text editor....
Read MorePublished: 1999-05-19
Severity: N/A
counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via an HTTP request that ends in %0A (newline), which causes a malformed...
Read MorePublished: 1999-05-19
Severity: N/A
counter.exe 2.70 allows a remote attacker to cause a denial of service (hang) via a long argument....
Read MorePublished: 1999-05-17
Severity: N/A
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scri...
Read MorePublished: 1999-05-17
Severity: N/A
Buffer overflow in Windows NT 4.0 help file utility via a malformed help file....
Read MorePublished: 1999-05-17
Severity: N/A
BisonWare FTP Server 4.1 and earlier allows remote attackers to cause a denial of service via a malformed PORT command that contains a non-numeric cha...
Read MorePublished: 1999-05-17
Severity: N/A
Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, vi...
Read MorePublished: 1999-05-15
Severity: N/A
Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file, which allows local users to easily decrypt t...
Read MorePublished: 1999-05-13
Severity: N/A
SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a re...
Read MorePublished: 1999-05-12
Severity: N/A
Denial of service in Windows NT IIS server using ..\.....
Read MorePublished: 1999-05-12
Severity: N/A
Alibaba HTTP server allows remote attackers to read files via a .. (dot dot) attack....
Read MorePublished: 1999-05-12
Severity: N/A
AV Option for MS Exchange Server option for InoculateIT 4.53, and possibly other versions, only scans the Inbox folder tree of a Microsoft Exchange se...
Read MorePublished: 1999-05-11
Severity: N/A
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable...
Read MorePublished: 1999-05-11
Severity: N/A
Buffer overflow in Solaris lpset program allows local users to gain root access....
Read MorePublished: 1999-05-11
Severity: N/A
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file....
Read MorePublished: 1999-05-11
Severity: N/A
Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to...
Read MorePublished: 1999-05-11
Severity: N/A
A configuration problem in the Ad Server Sample directory (AdSamples) in Microsoft Site Server 3.0 allows an attacker to obtain the SITE.CSC file, whi...
Read MorePublished: 1999-05-10
Severity: N/A
Buffer overflow in Solaris dtprintinfo program....
Read MorePublished: 1999-05-08
Severity: N/A
Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of service (crash) by connecting to default port 6004 and s...
Read MorePublished: 1999-05-07
Severity: N/A
Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL....
Read MorePublished: 1999-05-07
Severity: N/A
A remote attacker can disable the virus warning mechanism in Microsoft Excel 97....
Read MorePublished: 1999-05-07
Severity: N/A
The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-07
Severity: N/A
The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-07
Severity: N/A
The code.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-07
Severity: N/A
The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-06
Severity: N/A
Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program....
Read MorePublished: 1999-05-06
Severity: N/A
Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the ...
Read MorePublished: 1999-05-06
Severity: N/A
Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not use standard cache controls, which could allow use...
Read MorePublished: 1999-05-05
Severity: N/A
NAI VirusScan NT 4.0.2 does not properly modify the scan.dat virus definition file during an update via FTP, but it reports that the update was succes...
Read MorePublished: 1999-05-04
Severity: N/A
SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long str...
Read MorePublished: 1999-05-04
Severity: N/A
Microsoft NetMeeting 2.1 allows one client to read the contents of another client's clipboard via a CTRL-C in the chat box when the box is empty....
Read MorePublished: 1999-05-01
Severity: N/A
Denial of service in in.comsat allows attackers to generate messages....
Read MorePublished: 1999-05-01
Severity: N/A
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files....
Read MorePublished: 1999-05-01
Severity: N/A
NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network....
Read MorePublished: 1999-05-01
Severity: N/A
NetBSD allows ARP packets to overwrite static ARP entries....
Read MorePublished: 1999-05-01
Severity: N/A
The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users....
Read MorePublished: 1999-05-01
Severity: N/A
ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by ...
Read MorePublished: 1999-05-01
Severity: N/A
Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line....
Read MorePublished: 1999-05-01
Severity: N/A
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files...
Read MorePublished: 1999-04-29
Severity: N/A
The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root....
Read MorePublished: 1999-04-27
Severity: N/A
A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable....
Read MorePublished: 1999-04-23
Severity: N/A
The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses....
Read MorePublished: 1999-04-21
Severity: N/A
The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with th...
Read MorePublished: 1999-04-21
Severity: N/A
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of ...
Read MorePublished: 1999-04-21
Severity: N/A
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag....
Read MorePublished: 1999-04-20
Severity: N/A
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute....
Read MorePublished: 1999-04-20
Severity: N/A
An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information....
Read MorePublished: 1999-04-20
Severity: N/A
quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attack...
Read MorePublished: 1999-04-19
Severity: N/A
Denial of service in Sendmail 8.8.6 in HPUX....
Read MorePublished: 1999-04-15
Severity: N/A
IPFilter 3.2.3 through 3.2.10 allows local users to modify arbitrary files via a symlink attack on the saved output file....
Read MorePublished: 1999-04-14
Severity: N/A
Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain pr...
Read MorePublished: 1999-04-12
Severity: N/A
Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or fil...
Read MorePublished: 1999-04-12
Severity: N/A
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering ...
Read MorePublished: 1999-04-09
Severity: N/A
Vulnerability in the Wguest CGI program....
Read MorePublished: 1999-04-09
Severity: N/A
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component....
Read MorePublished: 1999-04-09
Severity: N/A
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted....
Read MorePublished: 1999-04-09
Severity: N/A
The remote proxy server in Winroute allows a remote attacker to reconfigure the proxy without authentication through the "cancel" button....
Read MorePublished: 1999-04-09
Severity: N/A
BMC Patrol allows remote attackers to gain access to an agent by spoofing frames....
Read MorePublished: 1999-04-09
Severity: N/A
Norton AntiVirus for Internet Email Gateways (NAVIEG) 1.0.1.7 and earlier, and Norton AntiVirus for MS Exchange (NAVMSE) 1.5 and earlier, store the ad...
Read MorePublished: 1999-04-07
Severity: N/A
The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it....
Read MorePublished: 1999-04-07
Severity: N/A
The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory be...
Read MorePublished: 1999-04-07
Severity: N/A
Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000....
Read MorePublished: 1999-04-06
Severity: N/A
vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain...
Read MorePublished: 1999-04-05
Severity: N/A
Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration fi...
Read MorePublished: 1999-04-05
Severity: N/A
The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory....
Read MorePublished: 1999-04-05
Severity: N/A
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail....
Read MorePublished: 1999-04-01
Severity: N/A
Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password....
Read MorePublished: 1999-04-01
Severity: N/A
In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters....
Read MorePublished: 1999-04-01
Severity: N/A
Local users can gain privileges using the debug utility in the MPE/iX operating system....
Read MorePublished: 1999-04-01
Severity: N/A
The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter....
Read MorePublished: 1999-04-01
Severity: N/A
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client....
Read MorePublished: 1999-04-01
Severity: N/A
Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack....
Read MorePublished: 1999-04-01
Severity: N/A
An incorrect configuration of the Order Form 1.0 shopping cart CGI program could disclose private information....
Read MorePublished: 1999-04-01
Severity: N/A
An incorrect configuration of the EZMall 2000 shopping cart CGI program "mall2000.cgi" could disclose private information....
Read MorePublished: 1999-04-01
Severity: N/A
An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information....
Read MorePublished: 1999-04-01
Severity: N/A
An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information....
Read MorePublished: 1999-04-01
Severity: N/A
An incorrect configuration of the Webcart CGI program could disclose private information....
Read MorePublished: 1999-04-01
Severity: N/A
BMC Patrol allows any remote attacker to flood its UDP port, causing a denial of service....
Read MorePublished: 1999-03-31
Severity: N/A
Xylan OmniSwitch before 3.2.6 allows remote attackers to bypass the login prompt via a CTRL-D (control d) character, which locks other users out of th...
Read MorePublished: 1999-03-30
Severity: N/A
XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain ...
Read MorePublished: 1999-03-26
Severity: N/A
FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack....
Read MorePublished: 1999-03-23
Severity: N/A
The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could leave the system open to users with physical acce...
Read MorePublished: 1999-03-23
Severity: N/A
Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of the AllowedPaths registry key, whose permissions a...
Read MorePublished: 1999-03-22
Severity: N/A
OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and bypass access controls....
Read MorePublished: 1999-03-22
Severity: N/A
Denial of service in "poll" in OpenBSD....
Read MorePublished: 1999-03-21
Severity: N/A
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to ga...
Read MorePublished: 1999-03-21
Severity: N/A
OpenBSD kernel crash through TSS handling, as caused by the crashme program....
Read MorePublished: 1999-03-18
Severity: N/A
talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes....
Read MorePublished: 1999-03-18
Severity: N/A
talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes....
Read MorePublished: 1999-03-17
Severity: N/A
umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program....
Read MorePublished: 1999-03-17
Severity: N/A
During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a pas...
Read MorePublished: 1999-03-17
Severity: N/A
In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set....
Read MorePublished: 1999-03-17
Severity: N/A
suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in ...
Read MorePublished: 1999-03-12
Severity: N/A
The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated p...
Read MorePublished: 1999-03-11
Severity: N/A
The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration....
Read MorePublished: 1999-03-11
Severity: N/A
Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port....
Read MorePublished: 1999-03-11
Severity: N/A
Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia....
Read MorePublished: 1999-03-09
Severity: N/A
64 bit Solaris 7 procfs allows local users to perform a denial of service....
Read MorePublished: 1999-03-08
Severity: N/A
Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection....
Read MorePublished: 1999-03-08
Severity: N/A
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows ...
Read MorePublished: 1999-03-08
Severity: N/A
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument....
Read MorePublished: 1999-03-08
Severity: N/A
Seapine Software TestTrack server allows a remote attacker to cause a denial of service (high CPU) via (1) TestTrackWeb.exe and (2) ttcgi.exe by conne...
Read MorePublished: 1999-03-07
Severity: N/A
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink at...
Read MorePublished: 1999-03-05
Severity: N/A
The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access....
Read MorePublished: 1999-03-04
Severity: N/A
Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access....
Read MorePublished: 1999-03-04
Severity: N/A
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new...
Read MorePublished: 1999-03-04
Severity: N/A
IMail POP3 daemon uses weak encryption, which allows local users to read files....
Read MorePublished: 1999-03-02
Severity: N/A
Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a lo...
Read MorePublished: 1999-03-01
Severity: N/A
Denial of service of Ascend routers through port 150 (remote administration)....
Read MorePublished: 1999-03-01
Severity: N/A
Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL....
Read MorePublished: 1999-03-01
Severity: N/A
Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry....
Read MorePublished: 1999-03-01
Severity: N/A
Netmanager Chameleon SMTPd has several buffer overflows that cause a crash....
Read MorePublished: 1999-03-01
Severity: N/A
Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using ...
Read MorePublished: 1999-03-01
Severity: N/A
A buffer overflow in the SGI X server allows local users to gain root access through the X server font path....
Read MorePublished: 1999-03-01
Severity: N/A
In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the conne...
Read MorePublished: 1999-03-01
Severity: N/A
When the Microsoft SMTP service attempts to send a message to a server and receives a 4xx error code, it quickly and repeatedly attempts to redeliver ...
Read MorePublished: 1999-03-01
Severity: CRITICAL
The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing....
Read MorePublished: 1999-03-01
Severity: N/A
The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" prefere...
Read MorePublished: 1999-03-01
Severity: N/A
Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor...
Read MorePublished: 1999-03-01
Severity: N/A
Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service....
Read MorePublished: 1999-03-01
Severity: N/A
ftp on HP-UX 11.00 allows local users to gain privileges....
Read MorePublished: 1999-03-01
Severity: N/A
MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM....
Read MorePublished: 1999-03-01
Severity: N/A
Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges....
Read MorePublished: 1999-03-01
Severity: N/A
Remote attackers can perform a denial of service in WebRamp systems by sending a malicious string to the HTTP port....
Read MorePublished: 1999-03-01
Severity: N/A
Remote attackers can perform a denial of service in WebRamp systems by sending a malicious UDP packet to port 5353, changing its IP address....
Read MorePublished: 1999-03-01
Severity: N/A
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages....
Read MorePublished: 1999-03-01
Severity: N/A
A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user....
Read MorePublished: 1999-03-01
Severity: N/A
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems....
Read MorePublished: 1999-03-01
Severity: N/A
Buffer overflow in IMonitor in IMail 5.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long str...
Read MorePublished: 1999-03-01
Severity: N/A
The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack....
Read MorePublished: 1999-02-26
Severity: N/A
super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access....
Read MorePublished: 1999-02-25
Severity: N/A
SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a ...
Read MorePublished: 1999-02-25
Severity: N/A
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web...
Read MorePublished: 1999-02-25
Severity: N/A
OpenBSD crash using nlink value in FFS and EXT2FS filesystems....
Read MorePublished: 1999-02-24
Severity: N/A
Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges....
Read MorePublished: 1999-02-22
Severity: N/A
Process table attack in Unix systems allows a remote attacker to perform a denial of service by filling a machine's process tables through multiple co...
Read MorePublished: 1999-02-22
Severity: N/A
InterScan VirusWall for Solaris doesn't scan files for viruses when a single HTTP request includes two GET commands....
Read MorePublished: 1999-02-22
Severity: N/A
Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scriptin...
Read MorePublished: 1999-02-22
Severity: N/A
Remote attackers can perform a denial of service in WinGate machines using a buffer overflow in the Winsock Redirector Service....
Read MorePublished: 1999-02-21
Severity: N/A
ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt...
Read MorePublished: 1999-02-20
Severity: N/A
Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs....
Read MorePublished: 1999-02-20
Severity: N/A
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary ...
Read MorePublished: 1999-02-19
Severity: N/A
Digital Unix Networker program nsralist has a buffer overflow which allows local users to obtain root privilege....
Read MorePublished: 1999-02-19
Severity: N/A
In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension....
Read MorePublished: 1999-02-19
Severity: N/A
Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service....
Read MorePublished: 1999-02-19
Severity: N/A
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD....
Read MorePublished: 1999-02-19
Severity: N/A
Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords...
Read MorePublished: 1999-02-19
Severity: N/A
Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admin.cgi program with an edit_file action parameter....
Read MorePublished: 1999-02-19
Severity: N/A
Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local use...
Read MorePublished: 1999-02-19
Severity: N/A
SVGAlib zgv 3.0-7 and earlier allows local users to gain root access via a privilege leak of the iopl(3) privileges to child processes....
Read MorePublished: 1999-02-18
Severity: N/A
A buffer overflow in lsof allows local users to obtain root privilege....
Read MorePublished: 1999-02-18
Severity: N/A
xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file....
Read MorePublished: 1999-02-18
Severity: N/A
Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges....
Read MorePublished: 1999-02-17
Severity: N/A
A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service....
Read MorePublished: 1999-02-17
Severity: N/A
Buffer overflow in Tetrix TetriNet daemon 1.13.16 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by conn...
Read MorePublished: 1999-02-17
Severity: N/A
snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when sn...
Read MorePublished: 1999-02-16
Severity: N/A
Debian GNU/Linux cfengine package is susceptible to a symlink attack....
Read MorePublished: 1999-02-16
Severity: N/A
Buffer overflow in webd in Network Flight Recorder (NFR) 2.0.2-Research allows remote attackers to execute commands....
Read MorePublished: 1999-02-16
Severity: N/A
O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cm...
Read MorePublished: 1999-02-15
Severity: N/A
Vulnerability in Compaq Tru64 UNIX edauth command....
Read MorePublished: 1999-02-15
Severity: N/A
mSQL (Mini SQL) 2.0.6 allows remote attackers to obtain sensitive server information such as logged users, database names, and server version via the ...
Read MorePublished: 1999-02-14
Severity: N/A
Buffer overflow in the Mail-Max SMTP server for Windows systems allows remote command execution....
Read MorePublished: 1999-02-12
Severity: N/A
The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini) which is not deleted....
Read MorePublished: 1999-02-12
Severity: N/A
Multilink PPP for ISDN dialup users in Ascend before 4.6 allows remote attackers to cause a denial of service via a spoofed endpoint identifier....
Read MorePublished: 1999-02-11
Severity: N/A
Lynx allows a local user to overwrite sensitive files through /tmp symlinks....
Read MorePublished: 1999-02-11
Severity: N/A
FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file...
Read MorePublished: 1999-02-10
Severity: N/A
rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory....
Read MorePublished: 1999-02-10
Severity: N/A
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files....
Read MorePublished: 1999-02-09
Severity: N/A
NetBSD netstat command allows local users to access kernel memory....
Read MorePublished: 1999-02-09
Severity: N/A
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto....
Read MorePublished: 1999-02-09
Severity: N/A
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identi...
Read MorePublished: 1999-02-08
Severity: N/A
Race condition in the db_loader program in ClearCase gives local users root access by setting SUID bits....
Read MorePublished: 1999-02-08
Severity: N/A
In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash valu...
Read MorePublished: 1999-02-06
Severity: N/A
Windows 95 and Windows 98 systems, when configured with multiple TCP/IP stacks bound to the same MAC address, allow remote attackers to cause a denial...
Read MorePublished: 1999-02-04
Severity: N/A
The metamail package allows remote command execution using shell metacharacters that are not quoted in a mailcap entry....
Read MorePublished: 1999-02-04
Severity: N/A
nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets....
Read MorePublished: 1999-02-02
Severity: N/A
WS_FTP server remote denial of service through cwd command....
Read MorePublished: 1999-02-02
Severity: N/A
SuSE 5.2 PLP lpc program has a buffer overflow that leads to root compromise....
Read MorePublished: 1999-02-02
Severity: N/A
ACC Tigris allows public access without a login....
Read MorePublished: 1999-02-02
Severity: N/A
IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920....
Read MorePublished: 1999-02-02
Severity: N/A
Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX o...
Read MorePublished: 1999-02-01
Severity: N/A
The WinGate proxy is installed without a password, which allows remote attackers to redirect connections without authentication....
Read MorePublished: 1999-02-01
Severity: N/A
FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by ...
Read MorePublished: 1999-02-01
Severity: N/A
Digital Unix 4.0 has a buffer overflow in the inc program of the mh package....
Read MorePublished: 1999-02-01
Severity: N/A
Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root....
Read MorePublished: 1999-02-01
Severity: N/A
A bug in Cyrix CPUs on Linux allows local users to perform a denial of service....
Read MorePublished: 1999-02-01
Severity: N/A
Local users can perform a denial of service in Alpha Linux, using MILO to force a reboot....
Read MorePublished: 1999-01-30
Severity: N/A
MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotel...
Read MorePublished: 1999-01-29
Severity: N/A
netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable....
Read MorePublished: 1999-01-29
Severity: N/A
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command....
Read MorePublished: 1999-01-28
Severity: N/A
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source addre...
Read MorePublished: 1999-01-28
Severity: N/A
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access....
Read MorePublished: 1999-01-27
Severity: N/A
IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory....
Read MorePublished: 1999-01-27
Severity: N/A
A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary com...
Read MorePublished: 1999-01-27
Severity: N/A
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote att...
Read MorePublished: 1999-01-26
Severity: N/A
Internet Explorer 4.01 allows remote attackers to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which caus...
Read MorePublished: 1999-01-26
Severity: N/A
Denial of service in Linux 2.2.0 running the ldd command on a core file....
Read MorePublished: 1999-01-26
Severity: N/A
The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (...
Read MorePublished: 1999-01-26
Severity: N/A
In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe)....
Read MorePublished: 1999-01-25
Severity: N/A
ControlIT 4.5 and earlier (aka Remotely Possible) has weak password encryption....
Read MorePublished: 1999-01-25
Severity: N/A
ControlIT v4.5 and earlier uses weak encryption to store usernames and passwords in an address book....
Read MorePublished: 1999-01-25
Severity: N/A
Windows 98 and other operating systems allows remote attackers to cause a denial of service via crafted "oshare" packets, possibly involving invalid f...
Read MorePublished: 1999-01-25
Severity: N/A
Buffer overflow in at program in Digital UNIX 4.0 allows local users to gain root privileges via a long command line argument....
Read MorePublished: 1999-01-24
Severity: N/A
Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attackers to cause a denial of service via a long NLST (l...
Read MorePublished: 1999-01-21
Severity: N/A
Buffer overflow in dtaction command gives root access....
Read MorePublished: 1999-01-21
Severity: N/A
WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled....
Read MorePublished: 1999-01-19
Severity: N/A
Windows NT 4.0 beta allows users to read and delete shares....
Read MorePublished: 1999-01-19
Severity: N/A
Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port....
Read MorePublished: 1999-01-17
Severity: N/A
Linux ftpwatch program allows local users to gain root privileges....
Read MorePublished: 1999-01-17
Severity: N/A
A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows remote users to read documentation files for the e...
Read MorePublished: 1999-01-14
Severity: N/A
By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is ...
Read MorePublished: 1999-01-14
Severity: N/A
Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers to execute arbitrary commands....
Read MorePublished: 1999-01-14
Severity: N/A
When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allo...
Read MorePublished: 1999-01-11
Severity: N/A
Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port....
Read MorePublished: 1999-01-10
Severity: N/A
Buffer overflow in Thomas Boutell's cgic library version up to 1.05....
Read MorePublished: 1999-01-07
Severity: N/A
Solaris ff.core allows local users to modify files....
Read MorePublished: 1999-01-06
Severity: N/A
L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password information....
Read MorePublished: 1999-01-06
Severity: N/A
Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices....
Read MorePublished: 1999-01-05
Severity: N/A
The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and imperson...
Read MorePublished: 1999-01-04
Severity: N/A
Buffer overflow in Dosemu Slang library in Linux....
Read MorePublished: 1999-01-04
Severity: N/A
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames....
Read MorePublished: 1999-01-03
Severity: N/A
Buffer overflow in the bootp server in the Debian Linux netstd package....
Read MorePublished: 1999-01-03
Severity: N/A
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package....
Read MorePublished: 1999-01-03
Severity: N/A
search.cgi in the SolutionScripts Home Free package allows remote attackers to view directories via a .. (dot dot) attack....
Read MorePublished: 1999-01-02
Severity: N/A
wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself....
Read MorePublished: 1999-01-02
Severity: N/A
IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920....
Read MorePublished: 1999-01-02
Severity: N/A
The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, w...
Read MorePublished: 1999-01-02
Severity: N/A
HP-UX aserver program allows local users to gain privileges via a symlink attack....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0032. Reason: This candidate is a duplicate of CVE-1999-0032. Notes: All CV...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0315. Reason: This candidate's original description had a typo that delayed ...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0022. Reason: This candidate is a duplicate of CVE-1999-0022. Notes: All CV...
Read MorePublished: 1999-01-01
Severity: N/A
finger 0@host on some systems may print information on some user accounts....
Read MorePublished: 1999-01-01
Severity: N/A
finger .@host on some systems may print information on some user accounts....
Read MorePublished: 1999-01-01
Severity: N/A
Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and pa...
Read MorePublished: 1999-01-01
Severity: N/A
Denial of service in Sendmail 8.6.11 and 8.6.12....
Read MorePublished: 1999-01-01
Severity: N/A
Attackers can do a denial of service of IRC by crashing the server....
Read MorePublished: 1999-01-01
Severity: N/A
Windows NT TCP/IP processes fragmented IP packets improperly, causing a denial of service....
Read MorePublished: 1999-01-01
Severity: N/A
Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote acc...
Read MorePublished: 1999-01-01
Severity: N/A
Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy....
Read MorePublished: 1999-01-01
Severity: N/A
Linux cfingerd could be exploited to gain root access....
Read MorePublished: 1999-01-01
Severity: N/A
A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials....
Read MorePublished: 1999-01-01
Severity: N/A
Buffer overflow in ircd allows arbitrary command execution....
Read MorePublished: 1999-01-01
Severity: N/A
MetaInfo MetaWeb web server allows users to upload, execute, and read scripts....
Read MorePublished: 1999-01-01
Severity: N/A
mSQL v2.0.1 and below allows remote execution through a buffer overflow....
Read MorePublished: 1999-01-01
Severity: N/A
The Java Web Server would allow remote users to obtain the source code for CGI programs....
Read MorePublished: 1999-01-01
Severity: N/A
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection....
Read MorePublished: 1999-01-01
Severity: N/A
In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages....
Read MorePublished: 1999-01-01
Severity: N/A
Local or remote users can force ControlIT 4.5 to reboot or force a user to log out, resulting in a denial of service....
Read MorePublished: 1999-01-01
Severity: N/A
NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging....
Read MorePublished: 1999-01-01
Severity: N/A
Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data....
Read MorePublished: 1999-01-01
Severity: N/A
The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesse...
Read MorePublished: 1999-01-01
Severity: N/A
DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root....
Read MorePublished: 1999-01-01
Severity: N/A
Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers....
Read MorePublished: 1999-01-01
Severity: N/A
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password....
Read MorePublished: 1999-01-01
Severity: N/A
A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server....
Read MorePublished: 1999-01-01
Severity: N/A
The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext....
Read MorePublished: 1999-01-01
Severity: N/A
In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login....
Read MorePublished: 1999-01-01
Severity: N/A
The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attackers to place a malicious file ...
Read MorePublished: 1999-01-01
Severity: N/A
A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files....
Read MorePublished: 1999-01-01
Severity: N/A
IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request....
Read MorePublished: 1999-01-01
Severity: N/A
A service or application has a backdoor password that was placed there by the developer....
Read MorePublished: 1999-01-01
Severity: N/A
An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP)....
Read MorePublished: 1999-01-01
Severity: N/A
A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap o...
Read MorePublished: 1999-01-01
Severity: N/A
Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter....
Read MorePublished: 1999-01-01
Severity: N/A
A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares....
Read MorePublished: 1999-01-01
Severity: N/A
A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers....
Read MorePublished: 1999-01-01
Severity: N/A
An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv....
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical NETBIOS/SMB share has inappropriate access control....
Read MorePublished: 1999-01-01
Severity: N/A
ICMP echo (ping) is allowed from arbitrary hosts....
Read MorePublished: 1999-01-01
Severity: N/A
The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real...
Read MorePublished: 1999-01-01
Severity: N/A
A router or firewall forwards external packets that claim to come from inside the network that the router/firewall is in front of....
Read MorePublished: 1999-01-01
Severity: N/A
A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc....
Read MorePublished: 1999-01-01
Severity: N/A
A system is operating in "promiscuous" mode which allows it to perform packet sniffing....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
A trust relationship exists between two Unix hosts....
Read MorePublished: 1999-01-01
Severity: N/A
An SSH server allows authentication through the .rhosts file....
Read MorePublished: 1999-01-01
Severity: N/A
A superfluous NFS server is running, but it is not importing or exporting any file systems....
Read MorePublished: 1999-01-01
Severity: N/A
Windows NT automatically logs in an administrator upon rebooting....
Read MorePublished: 1999-01-01
Severity: N/A
NFS exports system-critical data to the world, e.g. / or a password file....
Read MorePublished: 1999-01-01
Severity: N/A
A Unix account with a name other than "root" has UID 0, i.e. root privileges....
Read MorePublished: 1999-01-01
Severity: N/A
Two or more Unix accounts have the same UID....
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical Unix file or directory has inappropriate permissions....
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical Windows NT file or directory has inappropriate permissions....
Read MorePublished: 1999-01-01
Severity: N/A
IIS has the #exec function enabled for Server Side Include (SSI) files....
Read MorePublished: 1999-01-01
Severity: N/A
An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to become disabled....
Read MorePublished: 1999-01-01
Severity: N/A
A Sendmail alias allows input to be piped to a program....
Read MorePublished: 1999-01-01
Severity: N/A
rpc.admind in Solaris is not running in a secure mode....
Read MorePublished: 1999-01-01
Severity: N/A
A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file....
Read MorePublished: 1999-01-01
Severity: N/A
Windows NT is not using a password filter utility, e.g. PASSFILT.DLL....
Read MorePublished: 1999-01-01
Severity: N/A
A router's configuration service or management interface (such as a web server or telnet) is configured to allow connections from arbitrary hosts....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT system's registry audit policy does not log an event success or failure for security-critical registry keys....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys....
Read MorePublished: 1999-01-01
Severity: N/A
The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions....
Read MorePublished: 1999-01-01
Severity: N/A
The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions....
Read MorePublished: 1999-01-01
Severity: N/A
There is a one-way or two-way trust relationship between Windows NT domains....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT file system is not NTFS....
Read MorePublished: 1999-01-01
Severity: N/A
A network service is running on a nonstandard port....
Read MorePublished: 1999-01-01
Severity: N/A
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data....
Read MorePublished: 1999-01-01
Severity: N/A
A filter in a router or firewall allows unusual fragmented packets....
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical Windows NT registry key has inappropriate permissions....
Read MorePublished: 1999-01-01
Severity: N/A
An event log in Windows NT has inappropriate access permissions....
Read MorePublished: 1999-01-01
Severity: N/A
The Logon box of a Windows NT system displays the name of the last user who logged in....
Read MorePublished: 1999-01-01
Severity: N/A
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system w...
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT system does not restrict access to removable media drives such as a floppy disk drive or CDROM drive....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT log file has an inappropriate maximum size or retention period....
Read MorePublished: 1999-01-01
Severity: N/A
A Windows NT account policy does not forcibly disconnect remote users from the server when their logon hours expire....
Read MorePublished: 1999-01-01
Severity: N/A
A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection....
Read MorePublished: 1999-01-01
Severity: N/A
A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers....
Read MorePublished: 1999-01-01
Severity: N/A
A network intrusion detection system (IDS) does not verify the checksum on a packet....
Read MorePublished: 1999-01-01
Severity: N/A
A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets....
Read MorePublished: 1999-01-01
Severity: N/A
A network intrusion detection system (IDS) does not properly reassemble fragmented packets....
Read MorePublished: 1999-01-01
Severity: N/A
In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Op...
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical Windows NT registry key has an inappropriate value....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
The NT Alerter and Messenger services are running....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
The RPC portmapper service is running....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
The netstat service is running, which provides sensitive information to remote attackers....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
A component service related to NIS+ is running....
Read MorePublished: 1999-01-01
Severity: N/A
The OS/2 or POSIX subsystem in NT is enabled....
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, ...
Read MorePublished: 1999-01-01
Severity: N/A
The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user an...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly i...
Read MorePublished: 1999-01-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, ...
Read MorePublished: 1999-01-01
Severity: N/A
A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) u...
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical program or library does not have the appropriate patch, hotfix, or service pack installed, or is outdated or obsolete....
Read MorePublished: 1999-01-01
Severity: N/A
A system-critical program, library, or file has a checksum or other integrity measurement that indicates that it has been modified....
Read MorePublished: 1999-01-01
Severity: N/A
An application-critical Windows NT registry key has inappropriate permissions....
Read MorePublished: 1999-01-01
Severity: N/A
An application-critical Windows NT registry key has an inappropriate value....
Read MorePublished: 1999-01-01
Severity: N/A
Denial of service in IP protocol logger (ippl) on Red Hat and Debian Linux....
Read MorePublished: 1999-01-01
Severity: N/A
PIM software for Royal daVinci does not properly password-protext access to data stored in the .mdb (Microsoft Access) file, which allows local users ...
Read MorePublished: 1999-01-01
Severity: N/A
Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executa...
Read MorePublished: 1999-01-01
Severity: HIGH
Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command....
Read MorePublished: 1998-12-29
Severity: N/A
SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without being root....
Read MorePublished: 1998-12-27
Severity: N/A
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the us...
Read MorePublished: 1998-12-27
Severity: N/A
Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /...
Read MorePublished: 1998-12-26
Severity: N/A
Buffer overflow in BNC IRC proxy allows remote attackers to gain privileges....
Read MorePublished: 1998-12-26
Severity: N/A
Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program....
Read MorePublished: 1998-12-25
Severity: N/A
nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which could allow remote attackers to execute certain comma...
Read MorePublished: 1998-12-24
Severity: N/A
BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local...
Read MorePublished: 1998-12-18
Severity: N/A
Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perf...
Read MorePublished: 1998-12-17
Severity: N/A
The passwd command in Solaris can be subjected to a denial of service....
Read MorePublished: 1998-12-12
Severity: N/A
Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access....
Read MorePublished: 1998-12-10
Severity: N/A
RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privilege...
Read MorePublished: 1998-12-07
Severity: N/A
fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console de...
Read MorePublished: 1998-12-04
Severity: N/A
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type....
Read MorePublished: 1998-12-04
Severity: N/A
Buffer overflow in Platinum Policy Compliance Manager (PCM) 7.0 allows remote attackers to execute arbitrary commands via a long string to the Agent p...
Read MorePublished: 1998-12-03
Severity: N/A
BNBSurvey survey.cgi program allows remote attackers to execute commands via shell metacharacters....
Read MorePublished: 1998-12-03
Severity: N/A
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable....
Read MorePublished: 1998-12-03
Severity: N/A
Hummingbird Exceed 6.0.1.0 inadvertently includes a DLL that was meant for development and testing, which logs user names and passwords in cleartext i...
Read MorePublished: 1998-12-02
Severity: N/A
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack....
Read MorePublished: 1998-12-01
Severity: N/A
Buffer overflow in Solaris kcms_configure command allows local users to gain root access....
Read MorePublished: 1998-12-01
Severity: N/A
Buffer overflow in NetMeeting allows denial of service and remote command execution....
Read MorePublished: 1998-12-01
Severity: N/A
Linux PAM modules allow local users to gain root access using temporary files....
Read MorePublished: 1998-12-01
Severity: N/A
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands....
Read MorePublished: 1998-12-01
Severity: N/A
Remote attackers can perform a denial of service using IRIX fcagent....
Read MorePublished: 1998-12-01
Severity: N/A
Denial of service in HP-UX sendmail 8.8.6 related to accepting connections....
Read MorePublished: 1998-12-01
Severity: N/A
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing....
Read MorePublished: 1998-11-30
Severity: N/A
Excite for Web Servers (EWS) 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain ac...
Read MorePublished: 1998-11-30
Severity: N/A
Excite for Web Servers (EWS) 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf auth...
Read MorePublished: 1998-11-30
Severity: N/A
Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it e...
Read MorePublished: 1998-11-26
Severity: N/A
The installation of the fsp package 2.71-10 in Debian GNU/Linux 2.0 adds the anonymous FTP user without notifying the administrator, which could autom...
Read MorePublished: 1998-11-19
Severity: N/A
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which a...
Read MorePublished: 1998-11-18
Severity: N/A
KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file....
Read MorePublished: 1998-11-18
Severity: N/A
KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate it...
Read MorePublished: 1998-11-18
Severity: N/A
KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable....
Read MorePublished: 1998-11-18
Severity: N/A
Buffer overflow in kppp in KDE allows local users to gain root access via a long PATH environmental variable....
Read MorePublished: 1998-11-18
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1107. Reason: This candidate is a duplicate of CVE-1999-1107. Notes: All CV...
Read MorePublished: 1998-11-16
Severity: N/A
Vacation program allows command execution by remote users through a sendmail command....
Read MorePublished: 1998-11-12
Severity: N/A
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, whi...
Read MorePublished: 1998-11-12
Severity: N/A
The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passw...
Read MorePublished: 1998-11-11
Severity: N/A
ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. throu...
Read MorePublished: 1998-11-09
Severity: N/A
HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address....
Read MorePublished: 1998-11-09
Severity: N/A
LakeWeb Filemail CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address....
Read MorePublished: 1998-11-09
Severity: N/A
LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address....
Read MorePublished: 1998-11-05
Severity: N/A
NukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port (1080) without sending any data, which causes the...
Read MorePublished: 1998-11-05
Severity: N/A
Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands v...
Read MorePublished: 1998-11-04
Severity: HIGH
IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash....
Read MorePublished: 1998-11-02
Severity: N/A
A hidden SNMP community string in HP OpenView allows remote attackers to modify MIB tables and obtain sensitive information....
Read MorePublished: 1998-11-02
Severity: N/A
BMC PATROL Agent before 3.2.07 allows local users to gain root privileges via a symlink attack on a temporary file....
Read MorePublished: 1998-11-01
Severity: N/A
AIX infod allows local users to gain root access through an X display....
Read MorePublished: 1998-10-26
Severity: N/A
IRIX and AIX automountd services (autofsd) allow remote users to execute root commands....
Read MorePublished: 1998-10-26
Severity: N/A
Routed allows attackers to append data to files....
Read MorePublished: 1998-10-13
Severity: N/A
TCP RST denial of service in FreeBSD....
Read MorePublished: 1998-10-12
Severity: N/A
Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems....
Read MorePublished: 1998-10-08
Severity: N/A
Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands....
Read MorePublished: 1998-10-06
Severity: N/A
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file....
Read MorePublished: 1998-10-05
Severity: N/A
TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset (R...
Read MorePublished: 1998-10-02
Severity: N/A
A malicious Palace server can force a client to execute arbitrary programs....
Read MorePublished: 1998-10-02
Severity: N/A
IBM/Tivoli OPC Tracker Agent version 2 release 1 creates files, directories, and IPC message queues with insecure permissions (world-readable and worl...
Read MorePublished: 1998-10-02
Severity: N/A
IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the ...
Read MorePublished: 1998-10-01
Severity: N/A
In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system param...
Read MorePublished: 1998-10-01
Severity: N/A
A Windows NT domain user or administrator account has a guessable password....
Read MorePublished: 1998-10-01
Severity: N/A
A Windows NT domain user or administrator account has a default, null, blank, or missing password....
Read MorePublished: 1998-10-01
Severity: N/A
The Windows NT guest account is enabled....
Read MorePublished: 1998-10-01
Severity: N/A
Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted pas...
Read MorePublished: 1998-09-29
Severity: N/A
The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message ...
Read MorePublished: 1998-09-29
Severity: N/A
Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users to gain root privileges....
Read MorePublished: 1998-09-27
Severity: N/A
Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem com...
Read MorePublished: 1998-09-25
Severity: N/A
The default configuration of FLEXlm license manager 6.0d, and possibly other versions, allows remote attackers to shut down the server via the lmdown ...
Read MorePublished: 1998-09-22
Severity: N/A
SMTP server in SLmail 3.1 and earlier allows remote attackers to cause a denial of service via malformed commands whose arguments begin with a "(" (pa...
Read MorePublished: 1998-09-18
Severity: N/A
The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access ...
Read MorePublished: 1998-09-09
Severity: N/A
Buffer overflow in Sun's ping program can give root access to local users....
Read MorePublished: 1998-09-09
Severity: N/A
iChat ROOMS Webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1998-09-05
Severity: N/A
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, whi...
Read MorePublished: 1998-09-04
Severity: N/A
Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, aka the "Cross Frame Navigate" vulnerability....
Read MorePublished: 1998-09-03
Severity: N/A
Denial of service in HP-UX SharedX recserv program....
Read MorePublished: 1998-09-03
Severity: N/A
wwwboard allows a remote attacker to delete message board articles via a malformed argument....
Read MorePublished: 1998-09-01
Severity: N/A
The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering....
Read MorePublished: 1998-09-01
Severity: N/A
SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server....
Read MorePublished: 1998-09-01
Severity: N/A
SSH 1.2.25 on HP-UX allows access to new user accounts....
Read MorePublished: 1998-09-01
Severity: N/A
ROUTERmate has a default SNMP community name which allows remote attackers to modify its configuration....
Read MorePublished: 1998-09-01
Severity: N/A
Buffer overflow in web administration feature of Kolban Webcam32 4.8.3 and earlier allows remote attackers to execute arbitrary commands via a long UR...
Read MorePublished: 1998-08-31
Severity: N/A
Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands....
Read MorePublished: 1998-08-31
Severity: N/A
Cisco PIX firewall manager (PFM) on Windows NT allows attackers to connect to port 8080 on the PFM server and retrieve any file whose name and locatio...
Read MorePublished: 1998-08-27
Severity: N/A
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable...
Read MorePublished: 1998-08-23
Severity: N/A
AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a ...
Read MorePublished: 1998-08-23
Severity: N/A
Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service and possibly execute ar...
Read MorePublished: 1998-08-18
Severity: N/A
Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service....
Read MorePublished: 1998-08-14
Severity: N/A
Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag....
Read MorePublished: 1998-08-12
Severity: N/A
Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10....
Read MorePublished: 1998-08-07
Severity: N/A
Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with...
Read MorePublished: 1998-08-04
Severity: N/A
Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string....
Read MorePublished: 1998-08-03
Severity: N/A
The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage....
Read MorePublished: 1998-08-01
Severity: N/A
Netscape Enterprise servers may list files through the PageServices query....
Read MorePublished: 1998-08-01
Severity: N/A
The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP fram...
Read MorePublished: 1998-08-01
Severity: N/A
HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can gain root access via a symlink attack....
Read MorePublished: 1998-08-01
Severity: N/A
Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access....
Read MorePublished: 1998-08-01
Severity: N/A
NT users can gain debug-level access on a system process using the Sechole exploit....
Read MorePublished: 1998-07-30
Severity: N/A
Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive message...
Read MorePublished: 1998-07-29
Severity: N/A
dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (std...
Read MorePublished: 1998-07-29
Severity: N/A
Eudora and Eudora Light before 3.05 allows remote attackers to cause a crash and corrupt the user's mailbox via an e-mail message with certain dates, ...
Read MorePublished: 1998-07-28
Severity: N/A
Mutt mail client allows a remote attacker to execute commands via shell metacharacters....
Read MorePublished: 1998-07-28
Severity: N/A
Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code that contains a long CLASSID parameter in an OBJECT t...
Read MorePublished: 1998-07-25
Severity: N/A
Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter...
Read MorePublished: 1998-07-20
Severity: N/A
Arbitrary command execution via IMAP buffer overflow in authenticate command....
Read MorePublished: 1998-07-20
Severity: N/A
Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *@" command....
Read MorePublished: 1998-07-20
Severity: N/A
NBase switches NH2012, NH2012R, NH2015, and NH2048 have a back door password that cannot be disabled, which allows remote attackers to modify the swit...
Read MorePublished: 1998-07-20
Severity: N/A
NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software updates to modify the switch or cause a denial of serv...
Read MorePublished: 1998-07-16
Severity: N/A
Solaris SUNWadmap can be exploited to obtain root access....
Read MorePublished: 1998-07-16
Severity: N/A
Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a long string to the FTP port....
Read MorePublished: 1998-07-16
Severity: N/A
Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows...
Read MorePublished: 1998-07-16
Severity: N/A
Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled....
Read MorePublished: 1998-07-15
Severity: N/A
libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind....
Read MorePublished: 1998-07-15
Severity: N/A
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters...
Read MorePublished: 1998-07-15
Severity: N/A
HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a symlink attack on the /tmp/jetadmin.log file....
Read MorePublished: 1998-07-15
Severity: N/A
By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative ...
Read MorePublished: 1998-07-14
Severity: CRITICAL
Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command....
Read MorePublished: 1998-07-13
Severity: N/A
login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping pri...
Read MorePublished: 1998-07-11
Severity: N/A
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and co...
Read MorePublished: 1998-07-10
Severity: N/A
Buffer overflow in libsocks5 library of Socks 5 (socks5) 1.0r5 allows local users to gain privileges via long environmental variables....
Read MorePublished: 1998-07-09
Severity: N/A
Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line....
Read MorePublished: 1998-07-08
Severity: N/A
Ray Chan WWW Authorization Gateway 0.1 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "user" parame...
Read MorePublished: 1998-07-07
Severity: N/A
ePerl 2.2.12 allows remote attackers to read arbitrary files and possibly execute certain commands by specifying a full pathname of the target file as...
Read MorePublished: 1998-07-06
Severity: N/A
Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long inp...
Read MorePublished: 1998-07-03
Severity: N/A
StarTech (1) POP3 proxy server and (2) telnet server allows remote attackers to cause a denial of service via a long USER command....
Read MorePublished: 1998-07-03
Severity: N/A
The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -...
Read MorePublished: 1998-07-01
Severity: N/A
disk_bandwidth on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames....
Read MorePublished: 1998-07-01
Severity: N/A
ioconfig on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames....
Read MorePublished: 1998-07-01
Severity: N/A
Denial of service in WinGate proxy through a buffer overflow in POP3....
Read MorePublished: 1998-06-30
Severity: N/A
Livingston Portmaster routers running ComOS use the same initial sequence number (ISN) for TCP connections, which allows remote attackers to conduct s...
Read MorePublished: 1998-06-30
Severity: N/A
Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, which allows local users to cause a denial of service ...
Read MorePublished: 1998-06-29
Severity: N/A
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries....
Read MorePublished: 1998-06-29
Severity: N/A
Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the regis...
Read MorePublished: 1998-06-26
Severity: N/A
Information from SSL-encrypted sessions via PKCS #1....
Read MorePublished: 1998-06-26
Severity: N/A
COPS 1.04 allows local users to overwrite or create arbitrary files via a symlink attack on temporary files in (1) res_diff, (2) ca.src, and (3) mail....
Read MorePublished: 1998-06-26
Severity: N/A
rex.satan in SATAN 1.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/rex.$$ file....
Read MorePublished: 1998-06-26
Severity: N/A
Tiger 2.2.3 allows local users to overwrite arbitrary files via a symlink attack on various temporary files in Tiger's default working directory, as d...
Read MorePublished: 1998-06-24
Severity: N/A
The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell metacharacters....
Read MorePublished: 1998-06-22
Severity: N/A
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instruct...
Read MorePublished: 1998-06-16
Severity: MEDIUM
FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system....
Read MorePublished: 1998-06-12
Severity: N/A
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote attackers to...
Read MorePublished: 1998-06-11
Severity: N/A
Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users....
Read MorePublished: 1998-06-11
Severity: N/A
(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack....
Read MorePublished: 1998-06-11
Severity: N/A
Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2 creates an update directory with "EVERYONE FULL CONTROL" permissions, which ...
Read MorePublished: 1998-06-10
Severity: N/A
Sun's ftpd daemon can be subjected to a denial of service....
Read MorePublished: 1998-06-10
Severity: N/A
Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script....
Read MorePublished: 1998-06-08
Severity: N/A
Buffer overflow in NIS+, in Sun's rpc.nisd program....
Read MorePublished: 1998-06-03
Severity: N/A
Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a username or password, which allows remote attackers to c...
Read MorePublished: 1998-06-03
Severity: HIGH
Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to ...
Read MorePublished: 1998-06-02
Severity: N/A
Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by (1) ...
Read MorePublished: 1998-06-01
Severity: N/A
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL....
Read MorePublished: 1998-06-01
Severity: N/A
SGI mediad program allows local users to gain root access....
Read MorePublished: 1998-06-01
Severity: N/A
A Unix account has a guessable password....
Read MorePublished: 1998-06-01
Severity: N/A
An account on a router, firewall, or other network device has a default, null, blank, or missing password....
Read MorePublished: 1998-05-28
Severity: N/A
xosview 1.5.1 in Red Hat 5.1 allows local users to gain root access via a long HOME environmental variable....
Read MorePublished: 1998-05-27
Severity: N/A
Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user to create root-owned files leading to a root comp...
Read MorePublished: 1998-05-27
Severity: N/A
Vulnerability in (1) diskperf and (2) diskalign in IRIX 6.4 allows local attacker to create arbitrary root owned files, leading to root privileges....
Read MorePublished: 1998-05-21
Severity: N/A
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames....
Read MorePublished: 1998-05-16
Severity: N/A
Buffer overflow in kscreensaver in KDE klock allows local users to gain root privileges via a long HOME environmental variable....
Read MorePublished: 1998-05-15
Severity: N/A
Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands....
Read MorePublished: 1998-05-14
Severity: N/A
Buffer overflows in Sun libnsl allow root access....
Read MorePublished: 1998-05-11
Severity: N/A
Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time) in user-defined objects, which could produce a ru...
Read MorePublished: 1998-05-11
Severity: N/A
US Robotics/3Com Total Control Chassis with Frame Relay between 3.6.22 and 3.7.24 does not properly enforce access filters when the "set host prompt" ...
Read MorePublished: 1998-05-10
Severity: N/A
The Motorola CableRouter allows any remote user to connect to and configure the router on port 1024....
Read MorePublished: 1998-05-10
Severity: N/A
A memory leak in a Motorola CableRouter allows remote attackers to conduct a denial of service via a large number of telnet connections....
Read MorePublished: 1998-05-09
Severity: N/A
Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a ...
Read MorePublished: 1998-05-07
Severity: N/A
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse...
Read MorePublished: 1998-05-07
Severity: N/A
Vulnerability in Advanced File System Utility (advfs) in Digital UNIX 4.0 through 4.0d allows local users to gain privileges....
Read MorePublished: 1998-05-03
Severity: N/A
SGI IRIX buffer overflow in xterm and Xaw allows root access....
Read MorePublished: 1998-05-01
Severity: N/A
The printers program in IRIX has a buffer overflow that gives root access to local users....
Read MorePublished: 1998-05-01
Severity: N/A
FreeBSD T/TCP Extensions for Transactions can be subjected to spoofing attacks....
Read MorePublished: 1998-04-29
Severity: N/A
Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server....
Read MorePublished: 1998-04-29
Severity: N/A
Buffer overflow in kppp in KDE allows local users to gain root access via a long -c (account_name) command line argument....
Read MorePublished: 1998-04-28
Severity: N/A
suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line....
Read MorePublished: 1998-04-14
Severity: N/A
Buffer overflow in Eudora Internet Mail Server (EIMS) 2.01 and earlier on MacOS systems allows remote attackers to cause a denial of service via a lon...
Read MorePublished: 1998-04-10
Severity: N/A
named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT,...
Read MorePublished: 1998-04-08
Severity: N/A
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases....
Read MorePublished: 1998-04-08
Severity: N/A
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages....
Read MorePublished: 1998-04-08
Severity: MEDIUM
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer....
Read MorePublished: 1998-04-08
Severity: N/A
Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access....
Read MorePublished: 1998-04-08
Severity: N/A
Buffer overflow in Apple AppleShare Mail Server 5.0.3 on MacOS 8.1 and earlier allows a remote attacker to cause a denial of service (crash) via a lon...
Read MorePublished: 1998-04-08
Severity: N/A
Vulnerabilities in (1) ipxchk and (2) ipxlink in NetWare Client 1.0 on IRIX 6.3 and 6.4 allows local users to gain root access via a modified IFS envi...
Read MorePublished: 1998-04-08
Severity: N/A
Buffer overflow in Korn Shell (ksh) suid_exec program on IRIX 6.x and earlier, and possibly other operating systems, allows local users to gain root p...
Read MorePublished: 1998-04-08
Severity: N/A
(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows loca...
Read MorePublished: 1998-04-08
Severity: N/A
Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) s...
Read MorePublished: 1998-04-08
Severity: N/A
Network Flight Recorder (NFR) 1.5 and 1.6 allows remote attackers to cause a denial of service in nfrd (crash) via a TCP packet with a null header and...
Read MorePublished: 1998-04-08
Severity: N/A
Stalker Internet Mail Server 1.6 allows a remote attacker to cause a denial of service (crash) via a long HELO command....
Read MorePublished: 1998-04-07
Severity: N/A
Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary commands via a long ini...
Read MorePublished: 1998-04-06
Severity: N/A
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file....
Read MorePublished: 1998-04-03
Severity: N/A
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search Tool (performer_tools...
Read MorePublished: 1998-04-02
Severity: N/A
System Manager sysmgr GUI in SGI IRIX 6.4 and 6.3 allows remote attackers to execute commands by providing a trojan horse (1) runtask or (2) runexec d...
Read MorePublished: 1998-04-01
Severity: N/A
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd)....
Read MorePublished: 1998-04-01
Severity: N/A
Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities....
Read MorePublished: 1998-04-01
Severity: N/A
Nestea variation of teardrop IP fragmentation denial of service....
Read MorePublished: 1998-04-01
Severity: N/A
An account on a router, firewall, or other network device has a guessable password....
Read MorePublished: 1998-04-01
Severity: N/A
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript,...
Read MorePublished: 1998-04-01
Severity: N/A
HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests....
Read MorePublished: 1998-03-20
Severity: N/A
IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option....
Read MorePublished: 1998-03-18
Severity: N/A
inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing...
Read MorePublished: 1998-03-16
Severity: N/A
Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Conf...
Read MorePublished: 1998-03-11
Severity: N/A
ndd in Solaris 2.6 allows local users to cause a denial of service by modifying certain TCP/IP parameters....
Read MorePublished: 1998-03-09
Severity: N/A
ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog f...
Read MorePublished: 1998-03-01
Severity: N/A
The info2www CGI script allows remote file access or remote command execution....
Read MorePublished: 1998-03-01
Severity: N/A
SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files....
Read MorePublished: 1998-03-01
Severity: N/A
Linux bdash game has a buffer overflow that allows local users to gain root access....
Read MorePublished: 1998-03-01
Severity: N/A
A Unix account has a default, null, blank, or missing password....
Read MorePublished: 1998-03-01
Severity: N/A
UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target....
Read MorePublished: 1998-03-01
Severity: N/A
The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or...
Read MorePublished: 1998-03-01
Severity: N/A
Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges....
Read MorePublished: 1998-02-25
Severity: N/A
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrar...
Read MorePublished: 1998-02-25
Severity: N/A
sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a sy...
Read MorePublished: 1998-02-21
Severity: N/A
The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost....
Read MorePublished: 1998-02-20
Severity: N/A
FreeBSD mmap function allows users to modify append-only or immutable files....
Read MorePublished: 1998-02-20
Severity: N/A
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences....
Read MorePublished: 1998-02-18
Severity: N/A
Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a ...
Read MorePublished: 1998-02-14
Severity: N/A
Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the...
Read MorePublished: 1998-02-13
Severity: N/A
Bonk variation of teardrop IP fragmentation denial of service....
Read MorePublished: 1998-02-06
Severity: HIGH
Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names....
Read MorePublished: 1998-02-06
Severity: N/A
Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on the .kss.pid file....
Read MorePublished: 1998-02-02
Severity: N/A
Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly other operating systems, allows remote attackers to ca...
Read MorePublished: 1998-02-01
Severity: N/A
Denial of service in AIX telnet can freeze a system and prevent users from accessing the server....
Read MorePublished: 1998-02-01
Severity: N/A
Buffer overflow in War FTP allows remote execution of commands....
Read MorePublished: 1998-02-01
Severity: N/A
Solaris volrmmount program allows attackers to read any file....
Read MorePublished: 1998-02-01
Severity: N/A
mmap function in BSD allows local attackers in the kmem group to modify memory through devices....
Read MorePublished: 1998-02-01
Severity: N/A
The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not pro...
Read MorePublished: 1998-02-01
Severity: N/A
Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system cr...
Read MorePublished: 1998-01-27
Severity: N/A
htmlscript CGI program allows remote read access to files....
Read MorePublished: 1998-01-25
Severity: N/A
Buffer overflow in SGI IRIX mailx program....
Read MorePublished: 1998-01-22
Severity: HIGH
Stolen credentials from SSH clients via ssh-agent program, allowing other local users to access remote accounts belonging to the ssh-agent user....
Read MorePublished: 1998-01-21
Severity: N/A
Unauthorized privileged access or denial of service via dtappgather program in CDE....
Read MorePublished: 1998-01-21
Severity: N/A
Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system....
Read MorePublished: 1998-01-15
Severity: N/A
Progressive Networks Real Video server (pnserver) can be crashed remotely....
Read MorePublished: 1998-01-15
Severity: N/A
pnserver in RealServer 5.0 and earlier allows remote attackers to cause a denial of service by sending a short, malformed request....
Read MorePublished: 1998-01-12
Severity: N/A
sudo 1.5.x allows local users to execute arbitrary commands via a .. (dot dot) attack....
Read MorePublished: 1998-01-10
Severity: N/A
Buffer overflow in cidentd ident daemon allows local users to gain root privileges via a long line in the .authlie script....
Read MorePublished: 1998-01-08
Severity: N/A
AIX routed allows remote users to modify sensitive files....
Read MorePublished: 1998-01-05
Severity: N/A
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service....
Read MorePublished: 1998-01-05
Severity: N/A
DIT TransferPro installs devices with world-readable and world-writable permissions, which could allow local users to damage disks through the ff devi...
Read MorePublished: 1998-01-02
Severity: N/A
gcc 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary .i, .s, or .o files....
Read MorePublished: 1998-01-01
Severity: N/A
Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symli...
Read MorePublished: 1998-01-01
Severity: HIGH
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET....
Read MorePublished: 1998-01-01
Severity: N/A
Denial of service through Solaris 2.5.1 telnet by sending ^D characters....
Read MorePublished: 1998-01-01
Severity: N/A
Excite for Web Servers (EWS) allows remote command execution via shell metacharacters....
Read MorePublished: 1998-01-01
Severity: N/A
Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer overflow in the SMTP HELO command....
Read MorePublished: 1998-01-01
Severity: N/A
AAA authentication on Cisco systems allows attackers to execute commands without authorization....
Read MorePublished: 1998-01-01
Severity: N/A
Buffer overflow in Internet Explorer 4.0(1)....
Read MorePublished: 1998-01-01
Severity: N/A
Buffer overflow in the Linux mail program "deliver" allows local users to gain root access....
Read MorePublished: 1997-12-30
Severity: N/A
Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a lar...
Read MorePublished: 1997-12-29
Severity: N/A
iPass RoamServer 3.1 creates temporary files with world-writable permissions....
Read MorePublished: 1997-12-24
Severity: N/A
Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a source address of 127.0.0.1, which causes the serv...
Read MorePublished: 1997-12-23
Severity: N/A
Memory leak in Simple Network Management Protocol (SNMP) agent (snmp.exe) for Windows NT 4.0 before Service Pack 4 allows remote attackers to cause a ...
Read MorePublished: 1997-12-16
Severity: N/A
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook....
Read MorePublished: 1997-12-16
Severity: N/A
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2....
Read MorePublished: 1997-12-15
Severity: N/A
Buffer overflow in Cisco 7xx routers through the telnet service....
Read MorePublished: 1997-12-14
Severity: N/A
Buffer overflow in CrackLib 2.5 may allow local users to gain root privileges via a long GECOS field....
Read MorePublished: 1997-12-10
Severity: N/A
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce....
Read MorePublished: 1997-12-05
Severity: N/A
Buffer overflow in statd allows root privileges....
Read MorePublished: 1997-12-01
Severity: N/A
Denial of service in Ascend and 3com routers, which can be rebooted by sending a zero length TCP option....
Read MorePublished: 1997-12-01
Severity: N/A
Livingston RADIUS code has a buffer overflow which can allow remote execution of commands as root....
Read MorePublished: 1997-12-01
Severity: N/A
Buffer overflow in Linux Slackware crond program allows local users to gain root access....
Read MorePublished: 1997-11-26
Severity: N/A
Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters....
Read MorePublished: 1997-11-26
Severity: N/A
Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the password prompt by entering (1) a CTRL-Z character,...
Read MorePublished: 1997-11-20
Severity: N/A
Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges....
Read MorePublished: 1997-11-12
Severity: N/A
xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is creat...
Read MorePublished: 1997-11-10
Severity: N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gai...
Read MorePublished: 1997-11-10
Severity: N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain pr...
Read MorePublished: 1997-11-10
Severity: N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary fil...
Read MorePublished: 1997-11-10
Severity: N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges....
Read MorePublished: 1997-11-10
Severity: N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is runni...
Read MorePublished: 1997-11-08
Severity: N/A
Directory traversal vulnerability in carbo.dll in iCat Carbo Server 3.0.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the ic...
Read MorePublished: 1997-11-05
Severity: N/A
Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program....
Read MorePublished: 1997-11-01
Severity: N/A
Denial of service of inetd on Linux through SYN and RST packets....
Read MorePublished: 1997-11-01
Severity: N/A
SGI syserr program allows local users to corrupt files....
Read MorePublished: 1997-11-01
Severity: N/A
SGI permissions program allows local users to gain root privileges....
Read MorePublished: 1997-11-01
Severity: N/A
Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol....
Read MorePublished: 1997-10-29
Severity: N/A
Various vulnerabilities in the AIX portmir command allows local users to obtain root access....
Read MorePublished: 1997-10-29
Severity: N/A
AIX nslookup command allows local users to obtain root access by not dropping privileges correctly....
Read MorePublished: 1997-10-29
Severity: N/A
AIX piodmgrsu command allows local users to gain additional group privileges....
Read MorePublished: 1997-10-29
Severity: N/A
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character)....
Read MorePublished: 1997-10-29
Severity: N/A
The open() function in FreeBSD allows local attackers to write to arbitrary files....
Read MorePublished: 1997-10-28
Severity: N/A
Buffer overflow in AIX libDtSvc library can allow local users to gain root access....
Read MorePublished: 1997-10-28
Severity: N/A
Buffer overflow in AIX writesrv command allows local users to obtain root access....
Read MorePublished: 1997-10-24
Severity: N/A
Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to cause a denial of ser...
Read MorePublished: 1997-10-24
Severity: N/A
Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long n...
Read MorePublished: 1997-10-22
Severity: N/A
Buffer overflow in AIX xdat gives root access to local users....
Read MorePublished: 1997-10-19
Severity: N/A
CGI PHP mylog script allows an attacker to read any file on the target server....
Read MorePublished: 1997-10-18
Severity: N/A
Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable....
Read MorePublished: 1997-10-16
Severity: N/A
CGI PHP mlog script allows an attacker to read any file on the target server....
Read MorePublished: 1997-10-08
Severity: N/A
IMAP 4.1 BETA, and possibly other versions, does not properly handle the SIGABRT (abort) signal, which allows local users to crash the server (imapd) ...
Read MorePublished: 1997-10-06
Severity: N/A
sort creates temporary files and follows symbolic links, which allows local users to modify arbitrary files that are writable by the user running sort...
Read MorePublished: 1997-10-04
Severity: N/A
HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect...
Read MorePublished: 1997-10-04
Severity: N/A
HP Laserjet printers with JetDirect cards, when configured with TCP/IP, allow remote attackers to bypass print filters by directly sending PostScript ...
Read MorePublished: 1997-10-02
Severity: N/A
File creation and deletion, and remote execution, in the BSD line printer daemon (lpd)....
Read MorePublished: 1997-10-01
Severity: N/A
Buffer overflow in AIX rcp command allows local users to obtain root access....
Read MorePublished: 1997-10-01
Severity: N/A
Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections....
Read MorePublished: 1997-10-01
Severity: N/A
In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing rem...
Read MorePublished: 1997-10-01
Severity: N/A
Denial of service in Slmail v2.5 through the POP3 port....
Read MorePublished: 1997-10-01
Severity: N/A
All records in a WINS database can be deleted through SNMP for a denial of service....
Read MorePublished: 1997-10-01
Severity: N/A
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges....
Read MorePublished: 1997-10-01
Severity: N/A
nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers....
Read MorePublished: 1997-10-01
Severity: N/A
Vulnerability in HP-UX mediainit program....
Read MorePublished: 1997-10-01
Severity: N/A
Vulnerability in telnet service in HP-UX 10.30 allows attackers to cause a denial of service....
Read MorePublished: 1997-09-30
Severity: N/A
Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password....
Read MorePublished: 1997-09-23
Severity: N/A
Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution....
Read MorePublished: 1997-09-23
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1584, CVE-1999-1586. Reason: This candidate combined references from one iss...
Read MorePublished: 1997-09-23
Severity: N/A
Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command....
Read MorePublished: 1997-09-19
Severity: N/A
The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service....
Read MorePublished: 1997-09-19
Severity: N/A
The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service....
Read MorePublished: 1997-09-19
Severity: N/A
Race condition in xterm allows local users to modify arbitrary files via the logging option....
Read MorePublished: 1997-09-19
Severity: N/A
Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacke...
Read MorePublished: 1997-09-15
Severity: N/A
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local use...
Read MorePublished: 1997-09-12
Severity: N/A
Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports....
Read MorePublished: 1997-09-08
Severity: N/A
Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain ...
Read MorePublished: 1997-09-01
Severity: N/A
Apache httpd cookie buffer overflow for versions 1.1.1 and earlier....
Read MorePublished: 1997-09-01
Severity: N/A
AIX bugfiler program allows local users to gain root access....
Read MorePublished: 1997-09-01
Severity: N/A
The handler CGI program in IRIX allows arbitrary command execution....
Read MorePublished: 1997-09-01
Severity: N/A
The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs....
Read MorePublished: 1997-09-01
Severity: N/A
Linux implementations of TFTP would allow access to files outside the restricted directory....
Read MorePublished: 1997-09-01
Severity: N/A
IIS newdsn.exe CGI script allows remote users to overwrite files....
Read MorePublished: 1997-09-01
Severity: N/A
Remote execution of arbitrary commands through Guestbook CGI program....
Read MorePublished: 1997-09-01
Severity: N/A
HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not ...
Read MorePublished: 1997-09-01
Severity: N/A
Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a sym...
Read MorePublished: 1997-08-24
Severity: N/A
Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configurat...
Read MorePublished: 1997-08-24
Severity: N/A
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attem...
Read MorePublished: 1997-08-20
Severity: N/A
spaceball program in SpaceWare 7.3 v1.0 in IRIX 6.2 allows local users to gain root privileges by setting the HOSTNAME environmental variable to conta...
Read MorePublished: 1997-08-19
Severity: N/A
Vulnerability in CGI program in the Lasso application by Blue World, as used on WebSTAR and other servers, allows remote attackers to read arbitrary f...
Read MorePublished: 1997-08-13
Severity: N/A
DNS cache poisoning via BIND, by predictable query IDs....
Read MorePublished: 1997-08-11
Severity: N/A
The DG/UX finger daemon allows remote command execution through shell metacharacters....
Read MorePublished: 1997-08-05
Severity: N/A
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders...
Read MorePublished: 1997-08-01
Severity: N/A
php.cgi allows attackers to read any file on the system....
Read MorePublished: 1997-08-01
Severity: N/A
Buffer overflow in SunOS/Solaris ps command....
Read MorePublished: 1997-08-01
Severity: N/A
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts....
Read MorePublished: 1997-08-01
Severity: N/A
An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities....
Read MorePublished: 1997-08-01
Severity: N/A
Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violate...
Read MorePublished: 1997-07-31
Severity: N/A
Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privi...
Read MorePublished: 1997-07-30
Severity: N/A
Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges....
Read MorePublished: 1997-07-25
Severity: N/A
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs w...
Read MorePublished: 1997-07-23
Severity: N/A
Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request....
Read MorePublished: 1997-07-22
Severity: N/A
Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file....
Read MorePublished: 1997-07-21
Severity: N/A
Buffer overflow in AIX lchangelv gives root access....
Read MorePublished: 1997-07-21
Severity: N/A
Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands....
Read MorePublished: 1997-07-21
Severity: N/A
Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long command line argument....
Read MorePublished: 1997-07-17
Severity: N/A
Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program w...
Read MorePublished: 1997-07-16
Severity: N/A
root privileges via buffer overflow in df command on SGI IRIX systems....
Read MorePublished: 1997-07-16
Severity: N/A
root privileges via buffer overflow in pset command on SGI IRIX systems....
Read MorePublished: 1997-07-16
Severity: N/A
root privileges via buffer overflow in eject command on SGI IRIX systems....
Read MorePublished: 1997-07-16
Severity: N/A
root privileges via buffer overflow in login/scheme command on SGI IRIX systems....
Read MorePublished: 1997-07-16
Severity: HIGH
root privileges via buffer overflow in ordist command on SGI IRIX systems....
Read MorePublished: 1997-07-16
Severity: N/A
root privileges via buffer overflow in xlock command on SGI IRIX systems....
Read MorePublished: 1997-07-15
Severity: N/A
The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in ...
Read MorePublished: 1997-07-14
Severity: HIGH
IRIX fam service allows an attacker to obtain a list of all files on the server....
Read MorePublished: 1997-07-10
Severity: N/A
The Webgais program allows a remote user to execute arbitrary commands....
Read MorePublished: 1997-07-10
Severity: N/A
Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmente...
Read MorePublished: 1997-07-08
Severity: N/A
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell L...
Read MorePublished: 1997-07-08
Severity: N/A
websendmail in Webgais 1.0 allows a remote user to access arbitrary files and execute arbitrary code via the receiver parameter ($VAR_receiver variabl...
Read MorePublished: 1997-07-04
Severity: N/A
wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a...
Read MorePublished: 1997-07-01
Severity: N/A
Listening TCP ports are sequentially allocated, allowing spoofing attacks....
Read MorePublished: 1997-07-01
Severity: N/A
Buffer overflow in wu-ftp from PASV command causes a core dump....
Read MorePublished: 1997-07-01
Severity: N/A
The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands....
Read MorePublished: 1997-07-01
Severity: N/A
The Perl fingerd program allows arbitrary command execution from remote users....
Read MorePublished: 1997-07-01
Severity: N/A
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke....
Read MorePublished: 1997-07-01
Severity: N/A
wu-ftpd FTP daemon allows any user and password combination....
Read MorePublished: 1997-07-01
Severity: N/A
NFS allows attackers to read and write any file on the system by specifying a false UID....
Read MorePublished: 1997-07-01
Severity: N/A
When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records....
Read MorePublished: 1997-07-01
Severity: N/A
Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address su...
Read MorePublished: 1997-07-01
Severity: N/A
Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command....
Read MorePublished: 1997-07-01
Severity: N/A
Denial of service in Qmail through long SMTP commands....
Read MorePublished: 1997-07-01
Severity: N/A
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server....
Read MorePublished: 1997-07-01
Severity: N/A
A password for accessing a WWW URL is guessable....
Read MorePublished: 1997-07-01
Severity: N/A
The rwho/rwhod service is running, which exposes machine status and user information....
Read MorePublished: 1997-06-26
Severity: N/A
ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback...
Read MorePublished: 1997-06-24
Severity: N/A
Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument....
Read MorePublished: 1997-06-19
Severity: N/A
Buffer overflow in zgv in svgalib 1.2.10 and earlier allows local users to execute arbitrary code via a long HOME environment variable....
Read MorePublished: 1997-06-18
Severity: N/A
MajorCool mj_key_cache program allows local users to modify files via a symlink attack....
Read MorePublished: 1997-06-13
Severity: N/A
rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determ...
Read MorePublished: 1997-06-12
Severity: N/A
Command execution in Sun systems via buffer overflow in the at program....
Read MorePublished: 1997-06-11
Severity: N/A
getcwd() file descriptor leak in FTP....
Read MorePublished: 1997-06-10
Severity: N/A
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters....
Read MorePublished: 1997-06-04
Severity: N/A
Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111....
Read MorePublished: 1997-06-01
Severity: N/A
Denial of service in Qmail by specifying a large number of recipients with the RCPT command....
Read MorePublished: 1997-06-01
Severity: N/A
Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service....
Read MorePublished: 1997-06-01
Severity: N/A
Denial of service in IIS using long URLs....
Read MorePublished: 1997-06-01
Severity: N/A
Buffer overflow in bootpd 2.4.3 and earlier via a long boot file location....
Read MorePublished: 1997-05-29
Severity: N/A
Buffer overflow in suidperl (sperl), Perl 4.x and 5.x....
Read MorePublished: 1997-05-29
Severity: N/A
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files....
Read MorePublished: 1997-05-28
Severity: N/A
Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain privileges via setuid and setgid programs....
Read MorePublished: 1997-05-26
Severity: HIGH
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files....
Read MorePublished: 1997-05-26
Severity: N/A
Buffer overflow in AIX lquerylv program gives root access to local users....
Read MorePublished: 1997-05-23
Severity: N/A
cfingerd lists all users on a system via search.**@target....
Read MorePublished: 1997-05-21
Severity: N/A
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail....
Read MorePublished: 1997-05-19
Severity: N/A
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument....
Read MorePublished: 1997-05-19
Severity: N/A
SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device....
Read MorePublished: 1997-05-17
Severity: N/A
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which coul...
Read MorePublished: 1997-05-16
Severity: N/A
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment...
Read MorePublished: 1997-05-15
Severity: N/A
Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorized activities by entering debug mode through a sequ...
Read MorePublished: 1997-05-14
Severity: N/A
Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option....
Read MorePublished: 1997-05-13
Severity: N/A
Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to...
Read MorePublished: 1997-05-13
Severity: N/A
Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environmental variable....
Read MorePublished: 1997-05-09
Severity: N/A
addnetpr in SGI IRIX 6.2 and earlier allows local users to modify arbitrary files and possibly gain root access via a symlink attack on a temporary fi...
Read MorePublished: 1997-05-09
Severity: N/A
addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attack on the printers te...
Read MorePublished: 1997-05-07
Severity: N/A
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by ...
Read MorePublished: 1997-05-07
Severity: N/A
Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack....
Read MorePublished: 1997-05-07
Severity: N/A
inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows loc...
Read MorePublished: 1997-05-06
Severity: HIGH
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter....
Read MorePublished: 1997-05-05
Severity: N/A
KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy comman...
Read MorePublished: 1997-05-04
Severity: N/A
Symantec Norton Utilities 2.0 for Windows 95 marks the TUNEOCX.OCX ActiveX control as safe for scripting, which allows remote attackers to execute arb...
Read MorePublished: 1997-05-03
Severity: N/A
Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges....
Read MorePublished: 1997-05-01
Severity: N/A
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges....
Read MorePublished: 1997-05-01
Severity: N/A
Buffer overflow in AIX dtterm program for the CDE....
Read MorePublished: 1997-04-29
Severity: N/A
Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos ...
Read MorePublished: 1997-04-26
Severity: HIGH
Buffer overflow in xlock program allows local users to execute commands as root....
Read MorePublished: 1997-04-19
Severity: N/A
The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack....
Read MorePublished: 1997-04-17
Severity: N/A
Buffer overflow in PHP cgi program, php.cgi allows shell access....
Read MorePublished: 1997-04-07
Severity: N/A
Buffer overflow in University of Washington's implementation of IMAP and POP servers....
Read MorePublished: 1997-04-07
Severity: N/A
Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, whic...
Read MorePublished: 1997-04-02
Severity: N/A
Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by ...
Read MorePublished: 1997-04-01
Severity: N/A
Remote command execution in Microsoft Internet Explorer using .lnk and .url files....
Read MorePublished: 1997-04-01
Severity: N/A
Denial of service through Winpopup using large user names....
Read MorePublished: 1997-04-01
Severity: N/A
Buffer overflow in Solaris fdformat command gives root access to local users....
Read MorePublished: 1997-03-14
Severity: N/A
Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText co...
Read MorePublished: 1997-03-05
Severity: N/A
Buffer overflow in FreeBSD lpd through long DNS hostnames....
Read MorePublished: 1997-03-05
Severity: N/A
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on ...
Read MorePublished: 1997-03-04
Severity: N/A
Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument...
Read MorePublished: 1997-03-01
Severity: N/A
finger allows recursive searches by using a long string of @ symbols....
Read MorePublished: 1997-03-01
Severity: N/A
Finger redirection allows finger bombs....
Read MorePublished: 1997-03-01
Severity: N/A
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable....
Read MorePublished: 1997-03-01
Severity: N/A
A version of finger is running that exposes valid user information to any entity on the network....
Read MorePublished: 1997-03-01
Severity: N/A
Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloade...
Read MorePublished: 1997-02-20
Severity: N/A
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN....
Read MorePublished: 1997-02-13
Severity: N/A
Buffer overflow in NLS (Natural Language Service)....
Read MorePublished: 1997-02-10
Severity: N/A
Buffer overflow in ffbconfig in Solaris 2.5.1....
Read MorePublished: 1997-02-07
Severity: N/A
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT....
Read MorePublished: 1997-02-06
Severity: N/A
Buffer overflow of rlogin program using TERM environmental variable....
Read MorePublished: 1997-02-05
Severity: N/A
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot)...
Read MorePublished: 1997-02-03
Severity: N/A
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is...
Read MorePublished: 1997-02-02
Severity: N/A
Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges....
Read MorePublished: 1997-02-01
Severity: N/A
The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack....
Read MorePublished: 1997-02-01
Severity: N/A
HP-UX vgdisplay program gives root access to local users....
Read MorePublished: 1997-02-01
Severity: N/A
The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access....
Read MorePublished: 1997-02-01
Severity: N/A
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack....
Read MorePublished: 1997-01-30
Severity: N/A
Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain privileges....
Read MorePublished: 1997-01-28
Severity: N/A
MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4....
Read MorePublished: 1997-01-27
Severity: N/A
Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges....
Read MorePublished: 1997-01-27
Severity: N/A
Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0]....
Read MorePublished: 1997-01-11
Severity: N/A
wu-ftp allows files to be overwritten via the rnfr command....
Read MorePublished: 1997-01-09
Severity: N/A
Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges....
Read MorePublished: 1997-01-08
Severity: N/A
Csetup under IRIX allows arbitrary file creation or overwriting....
Read MorePublished: 1997-01-07
Severity: N/A
Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain privileges....
Read MorePublished: 1997-01-07
Severity: N/A
Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges....
Read MorePublished: 1997-01-06
Severity: N/A
Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX....
Read MorePublished: 1997-01-06
Severity: N/A
movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges....
Read MorePublished: 1997-01-04
Severity: N/A
netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executing the disable program, which allows local users to...
Read MorePublished: 1997-01-01
Severity: N/A
Remote access in AIX innd 1.5.1, using control messages....
Read MorePublished: 1997-01-01
Severity: N/A
In older versions of Sendmail, an attacker could use a pipe character to execute root commands....
Read MorePublished: 1997-01-01
Severity: N/A
NFS allows users to use a "cd .." command to access other directories besides the exported file system....
Read MorePublished: 1997-01-01
Severity: N/A
Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list....
Read MorePublished: 1997-01-01
Severity: N/A
Denial of service in syslog by sending it a large number of superfluous messages....
Read MorePublished: 1997-01-01
Severity: N/A
FormMail CGI program can be used by web servers other than the host server that the program resides on....
Read MorePublished: 1997-01-01
Severity: N/A
Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a ...
Read MorePublished: 1997-01-01
Severity: N/A
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share....
Read MorePublished: 1997-01-01
Severity: N/A
in.rshd allows users to login with a NULL username and execute commands....
Read MorePublished: 1997-01-01
Severity: N/A
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user....
Read MorePublished: 1997-01-01
Severity: N/A
The GNU tar command, when used in FTP sessions, may allow an attacker to execute arbitrary commands....
Read MorePublished: 1997-01-01
Severity: N/A
Sendmail 8.6.9 allows remote attackers to execute root commands, using ident....
Read MorePublished: 1997-01-01
Severity: N/A
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems....
Read MorePublished: 1997-01-01
Severity: HIGH
ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs....
Read MorePublished: 1997-01-01
Severity: N/A
Windows NT RSHSVC program allows remote users to execute arbitrary commands....
Read MorePublished: 1997-01-01
Severity: N/A
Denial of service in talk program allows remote attackers to disrupt a user's display....
Read MorePublished: 1997-01-01
Severity: N/A
Buffer overflow in listserv allows arbitrary command execution....
Read MorePublished: 1997-01-01
Severity: N/A
IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . (dot) in the URL....
Read MorePublished: 1997-01-01
Severity: N/A
ICMP redirect messages may crash or lock up a host....
Read MorePublished: 1997-01-01
Severity: N/A
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made....
Read MorePublished: 1997-01-01
Severity: N/A
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin....
Read MorePublished: 1997-01-01
Severity: N/A
NETBIOS share information may be published through SNMP registry keys in NT....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT local user or administrator account has a guessable password....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT local user or administrator account has a default, null, blank, or missing password....
Read MorePublished: 1997-01-01
Severity: N/A
A router or firewall allows source routed packets from arbitrary hosts....
Read MorePublished: 1997-01-01
Severity: N/A
IP forwarding is enabled on a machine which is not a router or firewall....
Read MorePublished: 1997-01-01
Severity: N/A
An SNMP community name is the default (e.g. public), null, or missing....
Read MorePublished: 1997-01-01
Severity: N/A
A NETBIOS/SMB share password is guessable....
Read MorePublished: 1997-01-01
Severity: N/A
A NETBIOS/SMB share password is the default, null, or missing....
Read MorePublished: 1997-01-01
Severity: N/A
An NIS domain name is easily guessable....
Read MorePublished: 1997-01-01
Severity: N/A
IP traceroute is allowed from arbitrary hosts....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Per...
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness....
Read MorePublished: 1997-01-01
Severity: N/A
A router's routing tables can be obtained from arbitrary hosts....
Read MorePublished: 1997-01-01
Severity: N/A
The registry in Windows NT can be accessed remotely by users who are not administrators....
Read MorePublished: 1997-01-01
Severity: N/A
.reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Right...
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories....
Read MorePublished: 1997-01-01
Severity: N/A
A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc....
Read MorePublished: 1997-01-01
Severity: N/A
A version of rusers is running that exposes valid user information to any entity on the network....
Read MorePublished: 1996-12-24
Severity: N/A
The jj CGI program allows command execution via shell metacharacters....
Read MorePublished: 1996-12-24
Severity: N/A
Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of service....
Read MorePublished: 1996-12-20
Severity: N/A
aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file....
Read MorePublished: 1996-12-19
Severity: N/A
swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access....
Read MorePublished: 1996-12-19
Severity: N/A
Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable....
Read MorePublished: 1996-12-18
Severity: N/A
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death....
Read MorePublished: 1996-12-13
Severity: N/A
Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument....
Read MorePublished: 1996-12-12
Severity: N/A
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable....
Read MorePublished: 1996-12-10
Severity: N/A
List of arbitrary files on Web host via nph-test-cgi script....
Read MorePublished: 1996-12-10
Severity: N/A
Sendmail decode alias can be used to overwrite sensitive files....
Read MorePublished: 1996-12-10
Severity: N/A
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names....
Read MorePublished: 1996-12-05
Severity: N/A
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook)....
Read MorePublished: 1996-12-04
Severity: CRITICAL
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others....
Read MorePublished: 1996-12-03
Severity: N/A
fsdump command in IRIX allows local users to obtain root access by modifying sensitive files....
Read MorePublished: 1996-12-03
Severity: N/A
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file....
Read MorePublished: 1996-12-01
Severity: N/A
Buffer overflow in HP-UX newgrp program....
Read MorePublished: 1996-11-26
Severity: N/A
Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message....
Read MorePublished: 1996-11-22
Severity: N/A
Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includ...
Read MorePublished: 1996-11-17
Severity: N/A
dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file....
Read MorePublished: 1996-11-16
Severity: N/A
Local users can start Sendmail in daemon mode and gain root privileges....
Read MorePublished: 1996-11-03
Severity: N/A
Vulnerability in ppl in HP-UX 10.x and earlier allows local users to gain root privileges by forcing ppl to core dump....
Read MorePublished: 1996-11-01
Severity: N/A
fpkg2swpk in HP-UX allows local users to gain root access....
Read MorePublished: 1996-11-01
Severity: N/A
Buffer overflow in mstm in HP-UX allows local users to gain root access....
Read MorePublished: 1996-10-30
Severity: N/A
Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privileges via a Trojan hor...
Read MorePublished: 1996-10-28
Severity: N/A
The WorkMan program can be used to overwrite any file to get root access....
Read MorePublished: 1996-10-25
Severity: N/A
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classificati...
Read MorePublished: 1996-10-16
Severity: N/A
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password....
Read MorePublished: 1996-10-08
Severity: N/A
Bash treats any character with a value of 255 as a command separator....
Read MorePublished: 1996-10-01
Severity: N/A
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access....
Read MorePublished: 1996-10-01
Severity: N/A
HP Remote Watch allows a remote user to gain root access....
Read MorePublished: 1996-10-01
Severity: N/A
HP-UX gwind program allows users to modify arbitrary files....
Read MorePublished: 1996-10-01
Severity: N/A
Buffer overflow in xmcd 2.1 allows local users to gain access through a user resource setting....
Read MorePublished: 1996-09-21
Severity: N/A
HPUX sysdiag allows local users to gain root privileges via a symlink attack during log file creation....
Read MorePublished: 1996-09-19
Severity: N/A
Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka S...
Read MorePublished: 1996-09-17
Severity: N/A
Transarc DCE Distributed File System (DFS) 1.1 for Solaris 2.4 and 2.5 does not properly initialize the grouplist for users who belong to a large numb...
Read MorePublished: 1996-09-13
Severity: N/A
(1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (` back-tick), wh...
Read MorePublished: 1996-09-11
Severity: N/A
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users....
Read MorePublished: 1996-09-04
Severity: N/A
Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root privileges....
Read MorePublished: 1996-09-01
Severity: N/A
ppl program in HP-UX allows local users to create root files through symlinks....
Read MorePublished: 1996-08-30
Severity: N/A
Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option....
Read MorePublished: 1996-08-26
Severity: N/A
Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail....
Read MorePublished: 1996-08-21
Severity: N/A
Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname....
Read MorePublished: 1996-08-15
Severity: N/A
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access....
Read MorePublished: 1996-08-14
Severity: N/A
fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access....
Read MorePublished: 1996-08-06
Severity: N/A
vold in Solaris 2.x allows local users to gain root access....
Read MorePublished: 1996-08-03
Severity: N/A
Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows loca...
Read MorePublished: 1996-08-01
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0032. Reason: This candidate is a duplicate of CVE-1999-0032. Notes: All CVE u...
Read MorePublished: 1996-07-31
Severity: N/A
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access....
Read MorePublished: 1996-07-25
Severity: N/A
admintool in Solaris allows a local user to write to arbitrary files and gain root access....
Read MorePublished: 1996-07-24
Severity: N/A
Local user gains root privileges via buffer overflow in rdist, via lookup() function....
Read MorePublished: 1996-07-16
Severity: N/A
A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz...
Read MorePublished: 1996-07-16
Severity: N/A
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F opt...
Read MorePublished: 1996-07-09
Severity: N/A
The dip program on many Linux systems allows local users to gain root access via a buffer overflow....
Read MorePublished: 1996-07-03
Severity: HIGH
Local user gains root privileges via buffer overflow in rdist, via expstr() function....
Read MorePublished: 1996-07-01
Severity: N/A
The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web ser...
Read MorePublished: 1996-06-26
Severity: N/A
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access....
Read MorePublished: 1996-06-07
Severity: N/A
nettune in HP-UX 10.01 and 10.00 is installed setuid root, which allows local users to cause a denial of service by modifying critical networking conf...
Read MorePublished: 1996-06-07
Severity: N/A
Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root ...
Read MorePublished: 1996-05-29
Severity: N/A
Perl, sh, csh, or other shell interpreters are installed in the cgi-bin directory on a WWW site, which allows remote attackers to execute arbitrary co...
Read MorePublished: 1996-05-28
Severity: N/A
The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate....
Read MorePublished: 1996-05-23
Severity: N/A
Manual page reader (man) in FreeBSD 2.2 and earlier allows local users to gain privileges via a sequence of commands....
Read MorePublished: 1996-05-17
Severity: N/A
Vulnerability in union file system in FreeBSD 2.2 and earlier, and possibly other operating systems, allows local users to cause a denial of service (...
Read MorePublished: 1996-04-24
Severity: N/A
Delete or create a file via rpc.statd, due to invalid information....
Read MorePublished: 1996-04-18
Severity: N/A
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call....
Read MorePublished: 1996-04-03
Severity: N/A
dxconsole in DEC OSF/1 3.2C and earlier allows local users to read arbitrary files by specifying the file with the -file parameter....
Read MorePublished: 1996-04-01
Severity: N/A
test-cgi program allows an attacker to list files on the server....
Read MorePublished: 1996-03-29
Severity: N/A
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet....
Read MorePublished: 1996-03-20
Severity: N/A
phf CGI program allows remote command execution through shell metacharacters....
Read MorePublished: 1996-03-01
Severity: N/A
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts....
Read MorePublished: 1996-02-25
Severity: N/A
IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files....
Read MorePublished: 1996-02-21
Severity: N/A
Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys....
Read MorePublished: 1996-02-08
Severity: N/A
Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm....
Read MorePublished: 1996-02-02
Severity: N/A
abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via...
Read MorePublished: 1996-01-03
Severity: N/A
Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations....
Read MorePublished: 1996-01-02
Severity: N/A
rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to ...
Read MorePublished: 1995-12-12
Severity: N/A
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands....
Read MorePublished: 1995-12-01
Severity: N/A
Race condition in Linux mailx command allows local users to read user files....
Read MorePublished: 1995-12-01
Severity: N/A
Buffer overflow in Linux splitvt command gives root access to local users....
Read MorePublished: 1995-12-01
Severity: N/A
vhe_u_mnt program in HP-UX allows local users to create root files through symlinks....
Read MorePublished: 1995-11-30
Severity: N/A
Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote...
Read MorePublished: 1995-11-01
Severity: N/A
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm....
Read MorePublished: 1995-10-19
Severity: N/A
Buffer overflow in syslog utility allows local or remote attackers to gain root privileges....
Read MorePublished: 1995-10-13
Severity: N/A
Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries a...
Read MorePublished: 1995-10-01
Severity: N/A
Livingston portmaster machines could be rebooted via a series of commands....
Read MorePublished: 1995-09-07
Severity: N/A
Some configurations of NIS+ in Linux allowed attackers to log in as the user "+"....
Read MorePublished: 1995-08-31
Severity: N/A
The ghostscript command with the -dSAFER option allows remote attackers to execute commands....
Read MorePublished: 1995-08-29
Severity: N/A
A race condition in the Solaris ps command allows an attacker to overwrite critical files....
Read MorePublished: 1995-08-23
Severity: N/A
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the I...
Read MorePublished: 1995-08-17
Severity: N/A
In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cau...
Read MorePublished: 1995-08-02
Severity: N/A
FormMail CGI program allows remote execution of commands....
Read MorePublished: 1995-07-31
Severity: N/A
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering....
Read MorePublished: 1995-05-10
Severity: N/A
rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, whic...
Read MorePublished: 1995-04-03
Severity: N/A
The SATAN session key may be disclosed if the user points the web browser to other sites, possibly allowing root access....
Read MorePublished: 1995-03-03
Severity: N/A
Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing....
Read MorePublished: 1995-03-03
Severity: N/A
SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges....
Read MorePublished: 1995-03-01
Severity: N/A
Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords....
Read MorePublished: 1995-02-17
Severity: N/A
Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access....
Read MorePublished: 1995-02-01
Severity: N/A
Buffer overflow in NCSA WebServer (version 1.5c) gives remote access....
Read MorePublished: 1995-01-01
Severity: N/A
Predictable TCP sequence numbers allow spoofing....
Read MorePublished: 1994-12-19
Severity: N/A
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request....
Read MorePublished: 1994-11-30
Severity: N/A
Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges....
Read MorePublished: 1994-11-30
Severity: N/A
Unspecified vulnerability in pt_chmod in SCO UNIX 4.2 and earlier allows local users to gain root access....
Read MorePublished: 1994-11-30
Severity: N/A
Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access....
Read MorePublished: 1994-11-30
Severity: N/A
Vulnerability in login in SCO UNIX 4.2 and earlier allows local users to gain root access....
Read MorePublished: 1994-11-30
Severity: N/A
Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access....
Read MorePublished: 1994-11-04
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1022. Reason: This candidate is a duplicate of CVE-1999-1022. Notes: All CV...
Read MorePublished: 1994-10-02
Severity: N/A
serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows...
Read MorePublished: 1994-09-21
Severity: N/A
Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges....
Read MorePublished: 1994-08-11
Severity: N/A
Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through...
Read MorePublished: 1994-08-09
Severity: N/A
colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument....
Read MorePublished: 1994-07-20
Severity: N/A
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arb...
Read MorePublished: 1994-07-13
Severity: N/A
HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when the...
Read MorePublished: 1994-06-09
Severity: N/A
Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command....
Read MorePublished: 1994-06-03
Severity: N/A
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled....
Read MorePublished: 1994-06-01
Severity: N/A
Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges....
Read MorePublished: 1994-05-23
Severity: N/A
Some implementations of rlogin allow root access if given a -froot parameter....
Read MorePublished: 1994-05-18
Severity: N/A
Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066....
Read MorePublished: 1994-05-13
Severity: N/A
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument....
Read MorePublished: 1994-05-04
Severity: N/A
Vulnerability in Glance and gpm programs in GlancePlus for HP-UX 9.x and earlier allows local users to access arbitrary files and gain privileges....
Read MorePublished: 1994-04-20
Severity: N/A
Vulnerability in VUE 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4994 and PHSS_5438....
Read MorePublished: 1994-03-21
Severity: N/A
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root....
Read MorePublished: 1994-02-24
Severity: N/A
AIX Licensed Program Product performance tools allow local users to gain root access....
Read MorePublished: 1994-02-14
Severity: N/A
Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone....
Read MorePublished: 1994-02-07
Severity: N/A
Vulnerability in subnetconfig in HP-UX 9.01 and 9.0 allows local users to gain privileges....
Read MorePublished: 1994-01-01
Severity: N/A
The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands....
Read MorePublished: 1993-12-16
Severity: N/A
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access....
Read MorePublished: 1993-10-01
Severity: N/A
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be us...
Read MorePublished: 1993-09-30
Severity: N/A
Sendmail WIZ command enabled, allowing root access....
Read MorePublished: 1993-09-17
Severity: N/A
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user,...
Read MorePublished: 1993-09-17
Severity: N/A
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privilege...
Read MorePublished: 1993-09-16
Severity: N/A
LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain ...
Read MorePublished: 1993-08-09
Severity: N/A
Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon....
Read MorePublished: 1993-05-24
Severity: N/A
Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the ...
Read MorePublished: 1993-04-22
Severity: N/A
Cisco routers 9.17 and earlier allow remote attackers to bypass security restrictions via certain IP source routed packets that should normally be den...
Read MorePublished: 1993-02-24
Severity: N/A
Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.0, and OpenVMS AXP 1.0, allows local users to gain system privileges....
Read MorePublished: 1993-02-18
Severity: N/A
Vulnerability in finger in Commodore Amiga UNIX 2.1p2a and earlier allows local users to read arbitrary files....
Read MorePublished: 1993-02-03
Severity: N/A
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash....
Read MorePublished: 1993-01-13
Severity: N/A
HP ypbind allows attackers with root privileges to modify NIS data....
Read MorePublished: 1992-12-31
Severity: N/A
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CV...
Read MorePublished: 1992-12-30
Severity: N/A
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are ...
Read MorePublished: 1992-12-10
Severity: N/A
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, w...
Read MorePublished: 1992-12-10
Severity: N/A
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used ...
Read MorePublished: 1992-11-17
Severity: N/A
Vulnerability in Monitor utility (SYS$SHARE:SPISHR.EXE) in VMS 5.0 through 5.4-2 allows local users to gain privileges....
Read MorePublished: 1992-07-21
Severity: N/A
Denial of service by sending forged ICMP unreachable packets....
Read MorePublished: 1992-07-21
Severity: N/A
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or ca...
Read MorePublished: 1992-06-04
Severity: N/A
The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypa...
Read MorePublished: 1992-05-27
Severity: N/A
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid progra...
Read MorePublished: 1992-04-27
Severity: N/A
FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary commands....
Read MorePublished: 1992-03-31
Severity: N/A
AIX passwd allows local users to gain root access....
Read MorePublished: 1992-03-19
Severity: N/A
The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges....
Read MorePublished: 1992-03-01
Severity: N/A
The rexd service is running, which uses weak authentication that can allow an attacker to execute commands....
Read MorePublished: 1992-02-25
Severity: N/A
Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote attackers to execute arbitrary commands....
Read MorePublished: 1991-12-31
Severity: N/A
Vulnerability in LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 allows attackers to gain root privileges....
Read MorePublished: 1991-12-18
Severity: N/A
Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root privileges via insecure system calls...
Read MorePublished: 1991-12-06
Severity: N/A
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system....
Read MorePublished: 1991-10-22
Severity: N/A
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Se...
Read MorePublished: 1991-09-27
Severity: N/A
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files....
Read MorePublished: 1991-09-10
Severity: N/A
The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows rem...
Read MorePublished: 1991-08-23
Severity: N/A
Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges....
Read MorePublished: 1991-05-23
Severity: N/A
Vulnerability in login in AT&T System V Release 4 allows local users to gain privileges....
Read MorePublished: 1991-05-20
Severity: N/A
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall....
Read MorePublished: 1991-05-14
Severity: N/A
The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to become root....
Read MorePublished: 1991-05-01
Severity: N/A
chroot in Digital Ultrix 4.1 and 4.0 is insecurely installed, which allows local users to gain privileges....
Read MorePublished: 1991-03-27
Severity: N/A
Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges....
Read MorePublished: 1991-03-27
Severity: N/A
Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges....
Read MorePublished: 1991-02-22
Severity: N/A
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments....
Read MorePublished: 1991-01-15
Severity: N/A
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive syste...
Read MorePublished: 1990-12-31
Severity: N/A
Vulnerability in the /etc/suid_exec program in HP Apollo Domain/OS sr10.2 and sr10.3 beta, related to the Korn Shell (ksh)....
Read MorePublished: 1990-12-20
Severity: N/A
TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local us...
Read MorePublished: 1990-10-31
Severity: N/A
/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to ...
Read MorePublished: 1990-10-25
Severity: N/A
VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command....
Read MorePublished: 1990-10-03
Severity: N/A
BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges....
Read MorePublished: 1990-10-03
Severity: N/A
Vulnerability in NeXT 1.0a and 1.0 with publicly accessible printers allows local users to gain privileges via a combination of the npd program and we...
Read MorePublished: 1990-10-03
Severity: N/A
Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges....
Read MorePublished: 1990-08-14
Severity: N/A
The SunView (SunTools) selection_svc facility allows remote users to read files....
Read MorePublished: 1990-05-09
Severity: N/A
Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable....
Read MorePublished: 1990-05-01
Severity: HIGH
Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0....
Read MorePublished: 1990-01-29
Severity: N/A
Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin....
Read MorePublished: 1989-10-26
Severity: N/A
Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly related to the configur...
Read MorePublished: 1989-07-26
Severity: N/A
Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges....
Read MorePublished: 1989-01-01
Severity: N/A
Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECO...
Read MorePublished: 1988-11-11
Severity: N/A
CWD ~root command in ftpd allows root access....
Read MorePublished: 1988-10-01
Severity: N/A
The debug command in Sendmail is enabled, allowing attackers to execute commands as root....
Read More