Количество 313 840
Количество 313 840
CVE-1999-0502
A Unix account has a default, null, blank, or missing password.
CVE-1999-0501
A Unix account has a guessable password.
CVE-1999-0499
NETBIOS share information may be published through SNMP registry keys in NT.
CVE-1999-0498
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.
CVE-1999-0497
Anonymous FTP is enabled.
CVE-1999-0496
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.
CVE-1999-0495
A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares.
CVE-1999-0494
Denial of service in WinGate proxy through a buffer overflow in POP3.
CVE-1999-0493
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
CVE-1999-0492
The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses.
CVE-1999-0491
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
CVE-1999-0490
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag.
CVE-1999-0489
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.
CVE-1999-0488
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
CVE-1999-0487
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files.
CVE-1999-0486
Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash.
CVE-1999-0485
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD.
CVE-1999-0484
Buffer overflow in OpenBSD ping.
CVE-1999-0483
OpenBSD crash using nlink value in FFS and EXT2FS filesystems.
CVE-1999-0482
OpenBSD kernel crash through TSS handling, as caused by the crashme program.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-1999-0502 A Unix account has a default, null, blank, or missing password. | CVSS2: 7.5 | 42% Средний | больше 27 лет назад |
| CVE-1999-0501 A Unix account has a guessable password. | CVSS2: 4.6 | 0% Низкий | больше 27 лет назад |
| CVE-1999-0499 NETBIOS share information may be published through SNMP registry keys in NT. | CVSS2: 7.5 | 11% Средний | почти 29 лет назад |
| CVE-1999-0498 TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files. | CVSS2: 10 | 1% Низкий | около 34 лет назад |
| CVE-1999-0497 Anonymous FTP is enabled. | 1% Низкий | почти 27 лет назад | |
| CVE-1999-0496 A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin. | CVSS2: 7.2 | 0% Низкий | почти 29 лет назад |
| CVE-1999-0495 A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. | CVSS2: 10 | 1% Низкий | почти 27 лет назад |
| CVE-1999-0494 Denial of service in WinGate proxy through a buffer overflow in POP3. | CVSS2: 5 | 0% Низкий | больше 27 лет назад |
| CVE-1999-0493 rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd. | CVSS2: 7.5 | 7% Низкий | больше 26 лет назад |
| CVE-1999-0492 The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses. | CVSS2: 10 | 3% Низкий | больше 26 лет назад |
| CVE-1999-0491 The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. | CVSS2: 4.6 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0490 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. | CVSS2: 7.5 | 5% Низкий | больше 26 лет назад |
| CVE-1999-0489 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013. | CVSS2: 10 | 17% Средний | больше 26 лет назад |
| CVE-1999-0488 Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. | CVSS2: 7.5 | 3% Низкий | больше 26 лет назад |
| CVE-1999-0487 The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. | CVSS2: 2.6 | 21% Средний | больше 26 лет назад |
| CVE-1999-0486 Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash. | CVSS2: 5 | 1% Низкий | больше 27 лет назад |
| CVE-1999-0485 Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD. | CVSS2: 2.6 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0484 Buffer overflow in OpenBSD ping. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0483 OpenBSD crash using nlink value in FFS and EXT2FS filesystems. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0482 OpenBSD kernel crash through TSS handling, as caused by the crashme program. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
Уязвимостей на страницу