U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Search Type: Search All
There are 241,649 matching records.
Displaying matches 241,481 through 241,500.
Vuln ID Summary CVSS Severity
CVE-1999-0043

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.

Published: December 04, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0044

fsdump command in IRIX allows local users to obtain root access by modifying sensitive files.

Published: December 03, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

Published: December 03, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-0050

Buffer overflow in HP-UX newgrp program.

Published: December 01, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1240

Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.

Published: November 26, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.5 HIGH
CVE-1999-1099

Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user.

Published: November 22, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM
CVE-1999-1221

dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.

Published: November 17, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 2.1 LOW
CVE-1999-0130

Local users can start Sendmail in daemon mode and gain root privileges.

Published: November 16, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1161

Vulnerability in ppl in HP-UX 10.x and earlier allows local users to gain root privileges by forcing ppl to core dump.

Published: November 03, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0311

fpkg2swpk in HP-UX allows local users to gain root access.

Published: November 01, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0336

Buffer overflow in mstm in HP-UX allows local users to gain root access.

Published: November 01, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1384

Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privileges via a Trojan horse .exitops program, which is called by the inst command that is executed by the RemoveSystemTour program.

Published: October 30, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0277

The WorkMan program can be used to overwrite any file to get root access.

Published: October 28, 1996; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0032

Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.

Published: October 25, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0075

PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.

Published: October 16, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM
CVE-1999-0234

Bash treats any character with a value of 255 as a command separator.

Published: October 08, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-0206

MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.

Published: October 01, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0246

HP Remote Watch allows a remote user to gain root access.

Published: October 01, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0308

HP-UX gwind program allows users to modify arbitrary files.

Published: October 01, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-0319

Buffer overflow in xmcd 2.1 allows local users to gain access through a user resource setting.

Published: October 01, 1996; 12:00:00 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH