Security Vulnerabilities, CVEs, Published In December 1999 CVSS score >= 8
Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.
Max CVSS
10.0
EPSS Score
0.46%
Published
1999-12-29
Updated
2008-09-10
glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.
Max CVSS
10.0
EPSS Score
1.50%
Published
1999-12-23
Updated
2022-08-17
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
Max CVSS
10.0
EPSS Score
0.50%
Published
1999-12-22
Updated
2018-10-30
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.
Max CVSS
10.0
EPSS Score
4.14%
Published
1999-12-21
Updated
2016-10-18
Buffer overflow in Linux linuxconf package allows remote attackers to gain root privileges via a long parameter.
Max CVSS
10.0
EPSS Score
4.53%
Published
1999-12-21
Updated
2022-08-17
Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands.
Max CVSS
10.0
EPSS Score
2.51%
Published
1999-12-27
Updated
2008-09-10
WebWho+ whois.cgi program allows remote attackers to execute commands via shell metacharacters in the TLD parameter.
Max CVSS
10.0
EPSS Score
6.04%
Published
1999-12-26
Updated
2022-08-17
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.
Max CVSS
10.0
EPSS Score
0.08%
Published
1999-12-30
Updated
2016-10-18
Buffer overflow in ZBServer Pro 1.50 allows remote attackers to execute commands via a long GET request.
Max CVSS
10.0
EPSS Score
9.84%
Published
1999-12-22
Updated
2016-10-18
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
Max CVSS
10.0
EPSS Score
2.86%
Published
1999-12-31
Updated
2008-09-05
Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.
Max CVSS
10.0
EPSS Score
0.13%
Published
1999-12-31
Updated
2008-09-05
Multiple unknown vulnerabilities in the "r-cmnds" (1) remshd, (2) rexecd, (3) rlogind, (4) rlogin, (5) remsh, (6) rcp, (7) rexec, and (8) rdist for HP-UX 10.00 through 11.00 allow attackers to gain privileges or access files.
Max CVSS
10.0
EPSS Score
1.02%
Published
1999-12-28
Updated
2017-10-19
The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field.
Max CVSS
10.0
EPSS Score
1.17%
Published
1999-12-31
Updated
2017-10-10
VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which makes it easier for attackers to conduct brute force password guessing.
Max CVSS
9.8
EPSS Score
0.17%
Published
1999-12-31
Updated
2024-02-09
mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core.
Max CVSS
10.0
EPSS Score
0.36%
Published
1999-12-31
Updated
2016-10-18
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.
Max CVSS
10.0
EPSS Score
1.44%
Published
1999-12-10
Updated
2018-10-30
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.
Max CVSS
10.0
EPSS Score
0.56%
Published
1999-12-09
Updated
2018-10-30
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.
Max CVSS
10.0
EPSS Score
1.91%
Published
1999-12-07
Updated
2018-10-30
classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.
Max CVSS
10.0
EPSS Score
5.47%
Published
1999-12-15
Updated
2022-08-17
Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.
Max CVSS
10.0
EPSS Score
0.84%
Published
1999-12-01
Updated
2008-09-09
Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.
Max CVSS
10.0
EPSS Score
0.54%
Published
1999-12-01
Updated
2008-09-09
21 vulnerabilities found