Vulnerabilities (CVE)

Filter

122140 total CVE
CVE Vendors Products Updated CVSS
CVE-1999-1358 1 Microsoft 2 Windows Nt, Windows 2000 2008-09-05 4.6
When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be...
CVE-1999-1321 1 Mit 1 Kerberos 2008-09-05 7.5
Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handled during TGT ticket passing.
CVE-1999-1320 1 Novell 1 Netware 2008-09-05 4.6
Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing.
CVE-1999-1315 1 Dec 1 Dec Openvms 2008-09-05 4.6
Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service.
CVE-1999-1307 1 Novell 1 Unixware 2008-09-05 7.2
Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.
CVE-1999-1306 1 Cisco 1 Ios 2008-09-05 7.5
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.
CVE-1999-1301 1 Freebsd 1 Freebsd 2008-09-05 7.5
A design flaw in the Z-Modem protocol allows the remote sender of a file to execute arbitrary programs on the client, as implemented in rz in the rzsz module of FreeBSD before 2.1.5, and possibly other programs.
CVE-1999-1300 1 Cray 1 Unicos 2008-09-05 3.6
Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.
CVE-1999-1198 1 Next 1 Next 2008-09-05 7.2
BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges.
CVE-1999-1197 1 Sun 1 Sunos 2008-09-05 7.2
TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges.
CVE-1999-1196 1 Hummingbird 1 Exceed 2008-09-05 5.0
Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000.
CVE-1999-1190 1 Admiral Systems 1 Emailclub 2008-09-05 10.0
Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message.
CVE-1999-1181 1 Sgi 1 Irix 2008-09-05 7.2
Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users to gain root privileges.
CVE-1999-1179 1 Sysadmin Magazine 1 Man.sh 2008-09-05 7.5
Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands.
CVE-1999-1172 1 Maximizer 1 Maximizer Enterprise 2008-09-05 5.0
By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared.
CVE-1999-1168 1 Iss 1 Internet Security Scanner 2008-09-05 7.2
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.
CVE-1999-1167 1 Third Voice 1 Third Voice Web 2008-09-05 6.4
Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read sensitive data and generate fake web pages for other Third Voice users by injecting malicious Javascript into an annotation.
CVE-1999-1166 1 Linux 1 Linux Kernel 2008-09-05 7.2
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.
CVE-1999-1162 1 Sco 2 Unix, Open Desktop 2008-09-05 6.4
Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the system.
CVE-1999-1124 1 Allaire 1 Coldfusion 2008-09-05 7.5
HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which requests the page from the server, making it look...