CVE List - 1999 / September
Showing 101 - 200 of 320 CVEs for September 1999 (Page 2 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-1999-0135 | 1999-09-29 | admintool in Solaris allows a local user to write to arbitrary files and gain root access. |
| CVE-1999-0136 | 1999-09-29 | Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access. |
| CVE-1999-0137 | 1999-09-29 | The dip program on many Linux systems allows local users to gain root access via a buffer overflow. |
| CVE-1999-0138 | 1999-09-29 | The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access. |
| CVE-1999-0139 | 1999-09-29 | Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. |
| CVE-1999-0141 | 1999-09-29 | Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet. |
| CVE-1999-0143 | 1999-09-29 | Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys. |
| CVE-1999-0146 | 1999-09-29 | The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading... |
| CVE-1999-0147 | 1999-09-29 | The aglimpse CGI program of the Glimpse package allows remote execution of arbitrary commands. |
| CVE-1999-0148 | 1999-09-29 | The handler CGI program in IRIX allows arbitrary command execution. |
| CVE-1999-0149 | 1999-09-29 | The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack. |
| CVE-1999-0150 | 1999-09-29 | The Perl fingerd program allows arbitrary command execution from remote users. |
| CVE-1999-0152 | 1999-09-29 | The DG/UX finger daemon allows remote command execution through shell metacharacters. |
| CVE-1999-0153 | 1999-09-29 | Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. |
| CVE-1999-0155 | 1999-09-29 | The ghostscript command with the -dSAFER option allows remote attackers to execute commands. |
| CVE-1999-0157 | 1999-09-29 | Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service. |
| CVE-1999-0158 | 1999-09-29 | Cisco PIX firewall manager (PFM) on Windows NT allows attackers to connect to port 8080 on the PFM server and retrieve any file whose name and location is known. |
| CVE-1999-0160 | 1999-09-29 | Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections. |
| CVE-1999-0161 | 1999-09-29 | In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering. |
| CVE-1999-0162 | 1999-09-29 | The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering. |
| CVE-1999-0164 | 1999-09-29 | A race condition in the Solaris ps command allows an attacker to overwrite critical files. |
| CVE-1999-0166 | 1999-09-29 | NFS allows users to use a "cd .." command to access other directories besides the exported file system. |
| CVE-1999-0167 | 1999-09-29 | In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. |
| CVE-1999-0168 | 1999-09-29 | The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise... |
| CVE-1999-0170 | 1999-09-29 | Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list. |
| CVE-1999-0172 | 1999-09-29 | FormMail CGI program allows remote execution of commands. |
| CVE-1999-0173 | 1999-09-29 | FormMail CGI program can be used by web servers other than the host server that the program resides on. |
| CVE-1999-0174 | 1999-09-29 | The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack. |
| CVE-1999-0175 | 1999-09-29 | The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server. |
| CVE-1999-0176 | 1999-09-29 | The Webgais program allows a remote user to execute arbitrary commands. |
| CVE-1999-0177 | 1999-09-29 | The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs. |
| CVE-1999-0178 | 1999-09-29 | Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string. |
| CVE-1999-0179 | 1999-09-29 | Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share. |
| CVE-1999-0180 | 1999-09-29 | in.rshd allows users to login with a NULL username and execute commands. |
| CVE-1999-0181 | 1999-09-29 | The wall daemon can be used for denial of service, social engineering attacks, or to execute remote commands. |
| CVE-1999-0182 | 1999-09-29 | Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. |
| CVE-1999-0183 | 1999-09-29 | Linux implementations of TFTP would allow access to files outside the restricted directory. |
| CVE-1999-0184 | 1999-09-29 | When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. |
| CVE-1999-0185 | 1999-09-29 | In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command... |
| CVE-1999-0188 | 1999-09-29 | The passwd command in Solaris can be subjected to a denial of service. |
| CVE-1999-0190 | 1999-09-29 | Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. |
| CVE-1999-0191 | 1999-09-29 | IIS newdsn.exe CGI script allows remote users to overwrite files. |
| CVE-1999-0192 | 1999-09-29 | Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable. |
| CVE-1999-0194 | 1999-09-29 | Denial of service in in.comsat allows attackers to generate messages. |
| CVE-1999-0196 | 1999-09-29 | websendmail in Webgais 1.0 allows a remote user to access arbitrary files and execute arbitrary code via the receiver parameter ($VAR_receiver variable). |
| CVE-1999-0201 | 1999-09-29 | A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user. |
| CVE-1999-0202 | 1999-09-29 | The GNU tar command, when used in FTP sessions, may allow an attacker to execute arbitrary commands. |
| CVE-1999-0204 | 1999-09-29 | Sendmail 8.6.9 allows remote attackers to execute root commands, using ident. |
| CVE-1999-0206 | 1999-09-29 | MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access. |
| CVE-1999-0207 | 1999-09-29 | Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command. |
| CVE-1999-0208 | 1999-09-29 | rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. |
| CVE-1999-0209 | 1999-09-29 | The SunView (SunTools) selection_svc facility allows remote users to read files. |
| CVE-1999-0214 | 1999-09-29 | Denial of service by sending forged ICMP unreachable packets. |
| CVE-1999-0215 | 1999-09-29 | Routed allows attackers to append data to files. |
| CVE-1999-0217 | 1999-09-29 | Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. |
| CVE-1999-0218 | 1999-09-29 | Livingston portmaster machines could be rebooted via a series of commands. |
| CVE-1999-0219 | 1999-09-29 | Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command. |
| CVE-1999-0221 | 1999-09-29 | Denial of service of Ascend routers through port 150 (remote administration). |
| CVE-1999-0224 | 1999-09-29 | Denial of service in Windows NT messenger service through a long username. |
| CVE-1999-0227 | 1999-09-29 | Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service. |
| CVE-1999-0228 | 1999-09-29 | Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT. |
| CVE-1999-0230 | 1999-09-29 | Buffer overflow in Cisco 7xx routers through the telnet service. |
| CVE-1999-0234 | 1999-09-29 | Bash treats any character with a value of 255 as a command separator. |
| CVE-1999-0236 | 1999-09-29 | ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. |
| CVE-1999-0237 | 1999-09-29 | Remote execution of arbitrary commands through Guestbook CGI program. |
| CVE-1999-0239 | 1999-09-29 | Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET. |
| CVE-1999-0244 | 1999-09-29 | Livingston RADIUS code has a buffer overflow which can allow remote execution of commands as root. |
| CVE-1999-0245 | 1999-09-29 | Some configurations of NIS+ in Linux allowed attackers to log in as the user "+". |
| CVE-1999-0251 | 1999-09-29 | Denial of service in talk program allows remote attackers to disrupt a user's display. |
| CVE-1999-0252 | 1999-09-29 | Buffer overflow in listserv allows arbitrary command execution. |
| CVE-1999-0256 | 1999-09-29 | Buffer overflow in War FTP allows remote execution of commands. |
| CVE-1999-0260 | 1999-09-29 | The jj CGI program allows command execution via shell metacharacters. |
| CVE-1999-0262 | 1999-09-29 | Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string. |
| CVE-1999-0263 | 1999-09-29 | Solaris SUNWadmap can be exploited to obtain root access. |
| CVE-1999-0264 | 1999-09-29 | htmlscript CGI program allows remote read access to files. |
| CVE-1999-0265 | 1999-09-29 | ICMP redirect messages may crash or lock up a host. |
| CVE-1999-0266 | 1999-09-29 | The info2www CGI script allows remote file access or remote command execution. |
| CVE-1999-0267 | 1999-09-29 | Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution. |
| CVE-1999-0269 | 1999-09-29 | Netscape Enterprise servers may list files through the PageServices query. |
| CVE-1999-0272 | 1999-09-29 | Denial of service in Slmail v2.5 through the POP3 port. |
| CVE-1999-0273 | 1999-09-29 | Denial of service through Solaris 2.5.1 telnet by sending ^D characters. |
| CVE-1999-0274 | 1999-09-29 | Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made. |
| CVE-1999-0276 | 1999-09-29 | mSQL v2.0.1 and below allows remote execution through a buffer overflow. |
| CVE-1999-0277 | 1999-09-29 | The WorkMan program can be used to overwrite any file to get root access. |
| CVE-1999-0278 | 1999-09-29 | In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. |
| CVE-1999-0279 | 1999-09-29 | Excite for Web Servers (EWS) allows remote command execution via shell metacharacters. |
| CVE-1999-0281 | 1999-09-29 | Denial of service in IIS using long URLs. |
| CVE-1999-0288 | 1999-09-29 | The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP frames to port 137 (NETBIOS Name... |
| CVE-1999-0289 | 1999-09-29 | The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL. |
| CVE-1999-0292 | 1999-09-29 | Denial of service through Winpopup using large user names. |
| CVE-1999-0293 | 1999-09-29 | AAA authentication on Cisco systems allows attackers to execute commands without authorization. |
| CVE-1999-0294 | 1999-09-29 | All records in a WINS database can be deleted through SNMP for a denial of service. |
| CVE-1999-0295 | 1999-09-29 | Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. |
| CVE-1999-0296 | 1999-09-29 | Solaris volrmmount program allows attackers to read any file. |
| CVE-1999-0299 | 1999-09-29 | Buffer overflow in FreeBSD lpd through long DNS hostnames. |
| CVE-1999-0300 | 1999-09-29 | nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers. |
| CVE-1999-0301 | 1999-09-29 | Buffer overflow in SunOS/Solaris ps command. |
| CVE-1999-0302 | 1999-09-29 | SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. |
| CVE-1999-0303 | 1999-09-29 | Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames. |
| CVE-1999-0305 | 1999-09-29 | The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the... |