Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1998-04-01 | CVE-1999-0257 | Unspecified vulnerability in Linux Kernel 2.6.20.1 Nestea variation of teardrop IP fragmentation denial of service. | 5.0 |
| 1998-04-01 | CVE-1999-0098 | Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities. | 10.0 |
| 1998-04-01 | CVE-1999-0003 | Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). | 10.0 |
| 1998-03-20 | CVE-1999-0960 | Unspecified vulnerability in SGI Irix IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option. | 7.2 |
| 1998-03-18 | CVE-1999-1075 | Unspecified vulnerability in IBM AIX 4.1.5 inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | 5.0 |
| 1998-03-16 | CVE-1999-0060 | Unspecified vulnerability in Lucent products Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool. | 5.0 |
| 1998-03-11 | CVE-1999-1118 | Unspecified vulnerability in SUN Solaris 2.6 ndd in Solaris 2.6 allows local users to cause a denial of service by modifying certain TCP/IP parameters. | 2.1 |
| 1998-03-09 | CVE-1999-1407 | Unspecified vulnerability in Redhat Linux 5.0 ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog file. | 2.1 |
| 1998-03-01 | CVE-1999-1272 | Unspecified vulnerability in SGI Irix Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges. | 7.2 |
| 1998-03-01 | CVE-1999-0795 | Unspecified vulnerability in SUN Solaris and Sunos The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches. | 7.5 |