Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-11-30 | CVE-1999-0824 | Unspecified vulnerability in Microsoft Windows NT 4.0 A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users. | 4.6 |
| 1999-11-30 | CVE-1999-0822 | Remote Buffer Overflow vulnerability in Qualcomm Qpopper 3.0/3.0B20 Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command. | 10.0 |
| 1999-11-29 | CVE-1999-0847 | Unspecified vulnerability in Freechess.Org Fics Program Buffer overflow in free internet chess server (FICS) program, xboard. | 5.0 |
| 1999-11-25 | CVE-1999-1547 | Improper Input Validation vulnerability in Oracle web Listener 2.1 Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent. | 7.5 |
| 1999-11-25 | CVE-1999-0845 | Unspecified vulnerability in SCO Unixware 7.0 Buffer overflow in SCO su program allows local users to gain root access via a long username. | 7.2 |
| 1999-11-25 | CVE-1999-0317 | Unspecified vulnerability in Linux Kernel 2.6.20.1 Buffer overflow in Linux su command gives root access to local users. | 7.2 |
| 1999-11-24 | CVE-1999-1548 | Unspecified vulnerability in Cabletron Smartswitch Router 8000 Firmware 2.0 Cabletron SmartSwitch Router (SSR) 8000 firmware 2.x can only handle 200 ARP requests per second allowing a denial of service attack to succeed with a flood of ARP requests exceeding that limit. | 5.0 |
| 1999-11-24 | CVE-1999-1189 | Unspecified vulnerability in Netscape Communicator and Navigator Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an .asp, .cgi, .html, or .pl file. | 7.5 |
| 1999-11-24 | CVE-1999-1163 | Unspecified vulnerability in HP 9000 800 Vulnerability in HP Series 800 S/X/V Class servers allows remote attackers to gain access to the S/X/V Class console via the Service Support Processor (SSP) Teststation. | 7.5 |
| 1999-11-24 | CVE-1999-0844 | WebConfig Overflow DoS vulnerability in Deerfield Mdaemon 2.8.5/2.8.6 Denial of service in MDaemon WorldClient and WebConfig services via a long URL. | 5.0 |