Количество 307 557
Количество 307 557
CVE-1999-0498
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.
CVE-1999-0497
Anonymous FTP is enabled.
CVE-1999-0496
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.
CVE-1999-0495
A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares.
CVE-1999-0494
Denial of service in WinGate proxy through a buffer overflow in POP3.
CVE-1999-0493
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
CVE-1999-0492
The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses.
CVE-1999-0491
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
CVE-1999-0490
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag.
CVE-1999-0489
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.
CVE-1999-0488
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
CVE-1999-0487
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files.
CVE-1999-0486
Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash.
CVE-1999-0485
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD.
CVE-1999-0484
Buffer overflow in OpenBSD ping.
CVE-1999-0483
OpenBSD crash using nlink value in FFS and EXT2FS filesystems.
CVE-1999-0482
OpenBSD kernel crash through TSS handling, as caused by the crashme program.
CVE-1999-0481
Denial of service in "poll" in OpenBSD.
CVE-1999-0480
Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack.
CVE-1999-0479
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-1999-0498 TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files. | CVSS2: 10 | 1% Низкий | почти 34 года назад |
| CVE-1999-0497 Anonymous FTP is enabled. | 1% Низкий | больше 26 лет назад | |
| CVE-1999-0496 A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin. | CVSS2: 7.2 | 0% Низкий | больше 28 лет назад |
| CVE-1999-0495 A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. | CVSS2: 10 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0494 Denial of service in WinGate proxy through a buffer overflow in POP3. | CVSS2: 5 | 0% Низкий | около 27 лет назад |
| CVE-1999-0493 rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd. | CVSS2: 7.5 | 7% Низкий | около 26 лет назад |
| CVE-1999-0492 The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses. | CVSS2: 10 | 3% Низкий | больше 26 лет назад |
| CVE-1999-0491 The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. | CVSS2: 4.6 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0490 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. | CVSS2: 7.5 | 5% Низкий | больше 26 лет назад |
| CVE-1999-0489 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013. | CVSS2: 10 | 17% Средний | больше 26 лет назад |
| CVE-1999-0488 Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. | CVSS2: 7.5 | 3% Низкий | больше 26 лет назад |
| CVE-1999-0487 The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. | CVSS2: 2.6 | 21% Средний | больше 26 лет назад |
| CVE-1999-0486 Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash. | CVSS2: 5 | 1% Низкий | больше 27 лет назад |
| CVE-1999-0485 Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD. | CVSS2: 2.6 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0484 Buffer overflow in OpenBSD ping. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0483 OpenBSD crash using nlink value in FFS and EXT2FS filesystems. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0482 OpenBSD kernel crash through TSS handling, as caused by the crashme program. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0481 Denial of service in "poll" in OpenBSD. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0480 Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0479 Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
Уязвимостей на страницу