Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1998-02-25 CVE-1999-1486 Unspecified vulnerability in IBM AIX
sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack.
local
high complexity
ibm
1.2
1.2
1998-02-25 CVE-1999-1229 Unspecified vulnerability in ID Software Quake 2 Server
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file.
local
low complexity
id-software
2.1
2.1
1998-02-21 CVE-1999-0290 Unspecified vulnerability in Qbik Wingate
The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost.
network
low complexity
qbik
5.0
5.0
1998-02-20 CVE-1999-1273 Unspecified vulnerability in National Science Foundation Squid web Proxy 1.1.20
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.
network
low complexity
national-science-foundation
7.5
7.5
1998-02-20 CVE-1999-0323 FreeBSD mmap function allows users to modify append-only or immutable files.
network
low complexity
bsdi freebsd netbsd openbsd
critical
 10.0
10
1998-02-18 CVE-1999-1207 Unspecified vulnerability in Network General Netxray Allversions
Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.
network
low complexity
network-general
7.5
7.5
1998-02-14 CVE-1999-0225 Unspecified vulnerability in Microsoft Windows NT 4.0
Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size.
network
low complexity
microsoft
5.0
5.0
1998-02-13 CVE-1999-0258 Unspecified vulnerability in Microsoft Windows 95 and Windows NT
Bonk variation of teardrop IP fragmentation denial of service.
network
low complexity
microsoft
5.0
5.0
1998-02-06 CVE-1999-1269 Unspecified vulnerability in KDE Beta 3 Initial
Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on the .kss.pid file.
local
low complexity
kde
2.1
2.1
1998-02-06 CVE-1999-0012 Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.
network
low complexity
netscape microsoft
5.0
5.0