Количество 342 694
Количество 342 694
CVE-1999-1013
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file.
CVE-1999-1012
SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string.
CVE-1999-1011
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.
CVE-1999-1010
An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
CVE-1999-1009
The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's system.
CVE-1999-1008
xsoldier program allows local users to gain root access via a long argument.
CVE-1999-1007
Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file.
CVE-1999-1006
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.
CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
CVE-1999-1004
Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command.
CVE-1999-1003
War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.
CVE-1999-1002
Netscape Navigator uses weak encryption for storing a user's Netscape mail password.
CVE-1999-1001
Cisco Cache Engine allows a remote attacker to gain access via a null username and password.
CVE-1999-1000
The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics.
CVE-1999-0999
Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet.
CVE-1999-0998
Cisco Cache Engine allows an attacker to replace content in the cache.
CVE-1999-0997
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
CVE-1999-0996
Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.
CVE-1999-0995
Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."
CVE-1999-0994
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-1999-1013 named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file. | CVSS2: 7.2 | 0% Низкий | больше 26 лет назад |
| CVE-1999-1012 SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string. | CVSS2: 5 | 1% Низкий | почти 27 лет назад |
| CVE-1999-1011 The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands. | CVSS2: 10 | 79% Высокий | больше 26 лет назад |
| CVE-1999-1010 An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy. | CVSS2: 2.1 | 0% Низкий | больше 26 лет назад |
| CVE-1999-1009 The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's system. | CVSS2: 2.6 | 0% Низкий | больше 26 лет назад |
| CVE-1999-1008 xsoldier program allows local users to gain root access via a long argument. | CVSS2: 7.2 | 0% Низкий | почти 26 лет назад |
| CVE-1999-1007 Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file. | CVSS2: 7.6 | 6% Низкий | больше 26 лет назад |
| CVE-1999-1006 Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter. | CVSS2: 5 | 0% Низкий | больше 26 лет назад |
| CVE-1999-1005 Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. | CVSS2: 5 | 2% Низкий | больше 26 лет назад |
| CVE-1999-1004 Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
| CVE-1999-1003 War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
| CVE-1999-1002 Netscape Navigator uses weak encryption for storing a user's Netscape mail password. | CVSS2: 5 | 0% Низкий | около 26 лет назад |
| CVE-1999-1001 Cisco Cache Engine allows a remote attacker to gain access via a null username and password. | CVSS2: 2.6 | 0% Низкий | больше 26 лет назад |
| CVE-1999-1000 The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics. | CVSS2: 5 | 0% Низкий | больше 26 лет назад |
| CVE-1999-0999 Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS packet. | CVSS2: 4.3 | 16% Средний | больше 26 лет назад |
| CVE-1999-0998 Cisco Cache Engine allows an attacker to replace content in the cache. | CVSS2: 5 | 1% Низкий | больше 26 лет назад |
| CVE-1999-0997 wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. | CVSS2: 7.5 | 4% Низкий | больше 26 лет назад |
| CVE-1999-0996 Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. | CVSS2: 7.5 | 6% Низкий | больше 26 лет назад |
| CVE-1999-0995 Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request." | CVSS2: 7.8 | 28% Средний | больше 26 лет назад |
| CVE-1999-0994 Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords. | CVSS2: 5 | 19% Средний | больше 26 лет назад |
Уязвимостей на страницу