Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1998-07-20 | CVE-1999-0005 | Arbitrary command execution via IMAP buffer overflow in authenticate command. | 10.0 |
| 1998-07-16 | CVE-1999-1558 | Unspecified vulnerability in Digital Openvms and Digital Openvms AXP Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled. | 7.5 |
| 1998-07-16 | CVE-1999-1432 | Unspecified vulnerability in SUN Solaris and Sunos Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges. | 7.5 |
| 1998-07-16 | CVE-1999-1149 | Unspecified vulnerability in Computer Software Manufaktur CSM Proxy 4.1 Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a long string to the FTP port. | 5.0 |
| 1998-07-16 | CVE-1999-0263 | Unspecified vulnerability in SUN Sunos Solaris SUNWadmap can be exploited to obtain root access. | 4.6 |
| 1998-07-15 | CVE-1999-1582 | Unspecified vulnerability in Cisco PIX Firewall By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality. | 7.5 |
| 1998-07-15 | CVE-1999-1433 | Unspecified vulnerability in HP Jetadmin Rev.D.01.09 HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a symlink attack on the /tmp/jetadmin.log file. | 7.2 |
| 1998-07-15 | CVE-1999-1297 | Unspecified vulnerability in SUN Sunos cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. | 2.1 |
| 1998-07-15 | CVE-1999-0213 | Unspecified vulnerability in SUN Solaris and Sunos libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind. | 10.0 |
| 1998-07-13 | CVE-1999-1434 | Unspecified vulnerability in Slackware Linux login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server. | 7.2 |