Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1998-02-21 CVE-1999-0290 Unspecified vulnerability in Qbik Wingate
The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost.
network
low complexity
qbik
5.0
1998-02-20 CVE-1999-1273 Unspecified vulnerability in National Science Foundation Squid web Proxy 1.1.20
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.
network
low complexity
national-science-foundation
7.5
1998-02-20 CVE-1999-0323 FreeBSD mmap function allows users to modify append-only or immutable files.
network
low complexity
bsdi freebsd netbsd openbsd
critical
10.0
1998-02-18 CVE-1999-1207 Unspecified vulnerability in Network General Netxray Allversions
Buffer overflow in web-admin tool in NetXRay 2.6 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.
network
low complexity
network-general
7.5
1998-02-14 CVE-1999-0225 Unspecified vulnerability in Microsoft Windows NT 4.0
Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size.
network
low complexity
microsoft
5.0
1998-02-13 CVE-1999-0258 Unspecified vulnerability in Microsoft Windows 95 and Windows NT
Bonk variation of teardrop IP fragmentation denial of service.
network
low complexity
microsoft
5.0
1998-02-06 CVE-1999-1269 Unspecified vulnerability in KDE Beta 3 Initial
Screen savers in KDE beta 3 allows local users to overwrite arbitrary files via a symlink attack on the .kss.pid file.
local
low complexity
kde
2.1
1998-02-06 CVE-1999-0012 Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.
network
low complexity
netscape microsoft
5.0
1998-02-02 CVE-1999-1445 Unspecified vulnerability in Slackware Linux 3.3/3.4
Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly other operating systems, allows remote attackers to cause a core dump via a short sequence of USER and PASS commands that do not provide valid usernames or passwords.
network
low complexity
slackware
5.0
1998-02-01 CVE-1999-0486 Unspecified vulnerability in AOL Instant Messenger 3.5
Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash.
network
low complexity
aol
5.0