Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-11-20 | CVE-1999-1209 | Unspecified vulnerability in SCO Open Desktop and Openserver Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges. | 7.2 |
| 1997-11-12 | CVE-1999-1210 | Unspecified vulnerability in Digital Unix 4.0B xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access. | 7.2 |
| 1997-11-10 | CVE-1999-1428 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges. | 6.2 |
| 1997-11-10 | CVE-1999-1427 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. | 6.2 |
| 1997-11-10 | CVE-1999-1426 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files. | 6.2 |
| 1997-11-10 | CVE-1999-1425 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. | 6.2 |
| 1997-11-10 | CVE-1999-1424 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries. | 6.2 |
| 1997-11-08 | CVE-1999-1069 | Unspecified vulnerability in Icat Electronic Commerce Suite 3.0.0 Directory traversal vulnerability in carbo.dll in iCat Carbo Server 3.0.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 1997-11-05 | CVE-1999-0021 | Unspecified vulnerability in Muhammad A. Muquit Wwwcount 2.3 Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program. | 7.5 |
| 1997-11-04 | CVE-1999-0306 | Unspecified vulnerability in HP Vvos 10.24 buffer overflow in HP xlock program. | 7.2 |