U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
There are 261,854 matching records.
Displaying matches 261,621 through 261,640.
Vuln ID Summary CVSS Severity
CVE-1999-1144

Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain privileges.

Published: January 30, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0047

MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.

Published: January 28, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0048

Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.

Published: January 27, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0966

Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0].

Published: January 27, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0081

wu-ftp allows files to be overwritten via the rnfr command.

Published: January 11, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM
CVE-1999-1088

Vulnerability in chsh command in HP-UX 9.X through 10.20 allows local users to gain privileges.

Published: January 09, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0049

Csetup under IRIX allows arbitrary file creation or overwriting.

Published: January 08, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1145

Vulnerability in Glance programs in GlancePlus for HP-UX 10.20 and earlier allows local users to access arbitrary files and gain privileges.

Published: January 07, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1311

Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges.

Published: January 07, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-0051

Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.

Published: January 06, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-1249

movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges.

Published: January 06, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-1120

netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executing the disable program, which allows local users to gain privileges.

Published: January 04, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 4.6 MEDIUM
CVE-1999-0100

Remote access in AIX innd 1.5.1, using control messages.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 10.0 HIGH
CVE-1999-0163

In older versions of Sendmail, an attacker could use a pipe character to execute root commands.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.2 HIGH
CVE-1999-0166

NFS allows users to use a "cd .." command to access other directories besides the exported file system.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM
CVE-1999-0170

Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.5 HIGH
CVE-1999-0171

Denial of service in syslog by sending it a large number of superfluous messages.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 2.1 LOW
CVE-1999-0173

FormMail CGI program can be used by web servers other than the host server that the program resides on.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM
CVE-1999-0178

Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 7.5 HIGH
CVE-1999-0179

Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.

Published: January 01, 1997; 12:00:00 AM -0500 		V4.0:(not available)
 V3.x:(not available)
 V2.0: 5.0 MEDIUM