The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.
Max CVSS
10.0
EPSS Score
0.87%
Published
1999-08-22
Updated
2017-10-10
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-08-21
Updated
2008-09-10
The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability.
Max CVSS
7.2
EPSS Score
0.08%
Published
1999-08-20
Updated
2018-10-12
Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-20
Updated
2008-09-05
Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) that is accessible by a read-only community string, but lists the entire table of community strings, which could allow attackers to conduct unauthorized activities.
Max CVSS
7.5
EPSS Score
1.50%
Published
1999-08-30
Updated
2016-10-18
Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]).
Max CVSS
10.0
EPSS Score
1.30%
Published
1999-08-22
Updated
2016-10-18
dfire.cgi script in Dragon-Fire IDS allows remote users to execute commands via shell metacharacters.
Max CVSS
10.0
EPSS Score
2.21%
Published
1999-08-05
Updated
2016-10-18
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
Max CVSS
10.0
EPSS Score
2.45%
Published
1999-08-27
Updated
2008-09-09
Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.
Max CVSS
10.0
EPSS Score
0.84%
Published
1999-08-22
Updated
2008-09-09
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
Max CVSS
7.5
EPSS Score
1.49%
Published
1999-08-11
Updated
2018-10-30
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-08-25
Updated
2008-09-09
Red Hat pump DHCP client allows remote attackers to gain root access in some configurations.
Max CVSS
10.0
EPSS Score
0.73%
Published
1999-08-11
Updated
2008-09-09
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-10
Updated
2022-08-17
Buffer overflows in Mars NetWare Emulation (NWE, mars_nwe) package via long directory names.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-08-31
Updated
2008-09-09
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-08-25
Updated
2008-09-09
Buffer overflow in Vixie Cron on Red Hat systems via the MAILTO environmental variable.
Max CVSS
7.5
EPSS Score
1.42%
Published
1999-08-25
Updated
2008-09-09
The w3-msql CGI script provided with Mini SQL allows remote attackers to view restricted directories.
Max CVSS
7.5
EPSS Score
3.64%
Published
1999-08-17
Updated
2008-09-09
Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler.
Max CVSS
10.0
EPSS Score
3.17%
Published
1999-08-18
Updated
2008-09-09
QMS CrownNet Unix Utilities for 2060 allows root to log on without a password.
Max CVSS
10.0
EPSS Score
1.50%
Published
1999-08-19
Updated
2008-09-09
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
Max CVSS
6.4
EPSS Score
0.66%
Published
1999-08-19
Updated
2008-09-09
A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication.
Max CVSS
7.5
EPSS Score
0.47%
Published
1999-08-19
Updated
2019-10-09
When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. "Double Byte Code Page".
Max CVSS
7.1
EPSS Score
0.50%
Published
1999-08-19
Updated
2018-10-12
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.
Max CVSS
10.0
EPSS Score
1.36%
Published
1999-08-08
Updated
2008-09-09
Buffer overflow in hybrid-6 IRC server commonly used on EFnet allows remote attackers to execute commands via m_invite invite option.
Max CVSS
7.5
EPSS Score
1.34%
Published
1999-08-13
Updated
2008-09-09
The WebRamp web administration utility has a default password.
Max CVSS
7.5
EPSS Score
0.37%
Published
1999-08-03
Updated
2008-09-09
26 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!