A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO command to the server.
Max CVSS
10.0
EPSS Score
2.18%
Published
1999-11-08
Updated
2017-12-19
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
Max CVSS
7.5
EPSS Score
4.17%
Published
1999-05-01
Updated
2008-09-10
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information or bypass additional access restrictions.
Max CVSS
10.0
EPSS Score
0.87%
Published
1999-08-22
Updated
2017-10-10
Vulnerabilities in the KDE kvt terminal program allow local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-06-01
Updated
2017-10-10
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
Max CVSS
10.0
EPSS Score
0.27%
Published
1999-01-29
Updated
2008-09-10
Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-02-18
Updated
2008-09-10
Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-10-22
Updated
2008-09-10
ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-12-03
Updated
2008-09-10
pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.
Max CVSS
7.5
EPSS Score
1.06%
Published
1999-08-21
Updated
2008-09-10
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
Max CVSS
10.0
EPSS Score
1.02%
Published
1999-06-28
Updated
2008-09-10
Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.
Max CVSS
10.0
EPSS Score
2.88%
Published
1999-11-18
Updated
2008-09-10
The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.
Max CVSS
7.6
EPSS Score
26.99%
Published
1999-11-12
Updated
2018-10-12
Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the "Virtual Machine Verifier" vulnerability.
Max CVSS
7.6
EPSS Score
0.30%
Published
1999-10-21
Updated
2018-10-12
The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability.
Max CVSS
7.2
EPSS Score
0.08%
Published
1999-08-20
Updated
2018-10-12
The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability.
Max CVSS
7.6
EPSS Score
1.28%
Published
1999-07-28
Updated
2018-10-15
The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands.
Max CVSS
7.5
EPSS Score
1.89%
Published
1999-11-13
Updated
2018-05-03
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-12-22
Updated
2016-10-18
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-06-09
Updated
2018-10-30
The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-12-29
Updated
2018-10-12
daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.
Max CVSS
7.5
EPSS Score
0.73%
Published
1999-12-14
Updated
2016-10-18
Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request.
Max CVSS
7.5
EPSS Score
4.16%
Published
1999-12-30
Updated
2008-09-10
Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.
Max CVSS
10.0
EPSS Score
0.46%
Published
1999-12-29
Updated
2008-09-10
glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.
Max CVSS
10.0
EPSS Score
1.50%
Published
1999-12-23
Updated
2022-08-17
glFtpD includes a default glftpd user account with a default password and a UID of 0.
Max CVSS
7.5
EPSS Score
1.42%
Published
1999-12-23
Updated
2022-08-17
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
Max CVSS
10.0
EPSS Score
0.50%
Published
1999-12-22
Updated
2018-10-30
425 vulnerabilities found
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!