Export limit exceeded: 339475 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 339475 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0062 | 1 Openbsd | 1 Openbsd | 2025-04-03 | N/A |
| The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage. | ||||
| CVE-2005-3396 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument. | ||||
| CVE-2005-3402 | 1 Mozilla | 1 Thunderbird | 2025-04-03 | N/A |
| The SMTP client in Mozilla Thunderbird 1.0.5 BETA, 1.0.7, and possibly other versions, does not notify users when it cannot establish a secure channel with the server, which allows remote attackers to obtain authentication information without detection via a man-in-the-middle (MITM) attack that bypasses TLS authentication or downgrades CRAM-MD5 authentication to plain authentication. | ||||
| CVE-2005-3403 | 1 Adaptive Technology Resource Centre | 1 Atutor | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.1 through 1.5.1-pl1 allow remote attackers to inject arbitrary web script or HTML via (1) the _base_href parameter in translate.php, (2) the _base_path parameter in news.inc.php, and (3) the p parameter in add_note.php. | ||||
| CVE-1999-0017 | 9 Caldera, Freebsd, Gnu and 6 more | 11 Openlinux, Freebsd, Inet and 8 more | 2025-04-03 | N/A |
| FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. | ||||
| CVE-1999-0019 | 7 Data General, Ibm, Ncr and 4 more | 10 Dg Ux, Aix, Mp-ras and 7 more | 2025-04-03 | N/A |
| Delete or create a file via rpc.statd, due to invalid information. | ||||
| CVE-1999-0026 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| root privileges via buffer overflow in pset command on SGI IRIX systems. | ||||
| CVE-1999-0028 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| root privileges via buffer overflow in login/scheme command on SGI IRIX systems. | ||||
| CVE-1999-0180 | 2025-04-03 | N/A | ||
| in.rshd allows users to login with a NULL username and execute commands. | ||||
| CVE-1999-0190 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. | ||||
| CVE-1999-0192 | 2 Redhat, Slackware | 2 Linux, Slackware Linux | 2025-04-03 | N/A |
| Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable. | ||||
| CVE-1999-0200 | 2025-04-03 | N/A | ||
| Windows NT FTP server (WFTP) with the guest account enabled without a password allows an attacker to log into the FTP server using any username and password. | ||||
| CVE-1999-0220 | 2025-04-03 | N/A | ||
| Attackers can do a denial of service of IRC by crashing the server. | ||||
| CVE-2005-3412 | 1 Elite Forum | 1 Elite Forum | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: URL in an <img> tag. | ||||
| CVE-1999-0379 | 1 Microsoft | 1 Backoffice Resource Kit | 2025-04-03 | N/A |
| Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. | ||||
| CVE-1999-0388 | 1 Datalynx | 1 Suguard | 2025-04-03 | N/A |
| DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root. | ||||
| CVE-1999-0398 | 1 Ssh | 2 Ssh, Ssh2 | 2025-04-03 | N/A |
| In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login. | ||||
| CVE-1999-0408 | 1 Sun | 1 Cobalt Raq | 2025-04-03 | N/A |
| Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. | ||||
| CVE-1999-0418 | 2025-04-03 | N/A | ||
| Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection. | ||||
| CVE-1999-0437 | 1 Ramp Networks | 1 Webramp | 2025-04-03 | N/A |
| Remote attackers can perform a denial of service in WebRamp systems by sending a malicious string to the HTTP port. | ||||