National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

There are 126,167 matching records.
Displaying matches 124741 through 124760.
Vuln ID Summary CVSS Severity
CVE-1999-0934

classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters.

Published: December 15, 1999; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0935

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.

Published: December 15, 1999; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0996

Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.

Published: December 15, 1999; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-1999-1010

An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.

Published: December 14, 1999; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-2000-0068

daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.

Published: December 14, 1999; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-2000-0361

The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.

Published: December 14, 1999; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-1999-0993

Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.

Published: December 13, 1999; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-1999-1003

War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.

Published: December 13, 1999; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-1007

Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file.

Published: December 13, 1999; 12:00:00 AM -05:00
    V2: 7.6 HIGH
CVE-1999-0289

The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.

Published: December 12, 1999; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-1009

The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's system.

Published: December 12, 1999; 12:00:00 AM -05:00
    V2: 2.6 LOW
CVE-1999-0975

The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

Published: December 10, 1999; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-0977

Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.

Published: December 10, 1999; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0972

Buffer overflow in Xshipwars xsw program.

Published: December 09, 1999; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-1999-0974

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.

Published: December 09, 1999; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0978

htdig allows remote attackers to execute commands via filenames with shell metacharacters.

Published: December 09, 1999; 12:00:00 AM -05:00
    V2: 7.5 HIGH
CVE-1999-0981

Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local files via that window, aka "Server-side Page Reference Redirect."

Published: December 08, 1999; 12:00:00 AM -05:00
    V2: 5.1 MEDIUM
CVE-1999-0986

The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.

Published: December 08, 1999; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0973

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.

Published: December 07, 1999; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0976

Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.

Published: December 07, 1999; 12:00:00 AM -05:00
    V2: 2.1 LOW