Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1999-02-01 CVE-1999-0291 Unspecified vulnerability in Qbik Wingate
The WinGate proxy is installed without a password, which allows remote attackers to redirect connections without authentication.
network
low complexity
qbik
7.5
1999-01-30 CVE-1999-0360 Unspecified vulnerability in Microsoft Site Server 2.0
MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely.
local
low complexity
microsoft
7.2
1999-01-29 CVE-2000-0370 Unspecified vulnerability in Caldera Openlinux
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
network
low complexity
caldera
critical
10.0
1999-01-29 CVE-1999-1546 Unspecified vulnerability in IBM Navio NC Browser 1.1.0.1
netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable.
network
low complexity
ibm
5.0
1999-01-28 CVE-1999-0952 Unspecified vulnerability in SUN Solaris and Sunos
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
local
low complexity
sun
7.2
1999-01-28 CVE-1999-0461 Remote Security vulnerability in Linux Kernel
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.
network
low complexity
sgi linux
critical
10.0
1999-01-27 CVE-1999-1450 Unspecified vulnerability in SCO Openserver and Unixware
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
network
low complexity
sco
7.5
1999-01-27 CVE-1999-0349 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Internet Information Server 3.0/4.0
A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.
network
low complexity
microsoft CWE-119
7.5
1999-01-27 CVE-1999-0348 Information Exposure vulnerability in Microsoft Internet Information Server 4.0
IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory.
network
low complexity
microsoft CWE-200
5.0
1999-01-26 CVE-1999-0450 Unspecified vulnerability in Microsoft products
In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe).
network
low complexity
microsoft
7.5