Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1997-07-31 CVE-1999-1308 Unspecified vulnerability in HP Hp-Ux 10.20
Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges.
local
low complexity
hp
4.6
1997-07-30 CVE-1999-1419 Unspecified vulnerability in SUN Solaris and Sunos
Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges.
local
low complexity
sun
7.2
1997-07-25 CVE-1999-1217 Unspecified vulnerability in Microsoft Windows NT
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.
local
low complexity
microsoft
4.6
1997-07-23 CVE-1999-1068 Unspecified vulnerability in Oracle Http Server 2.1
Oracle Webserver 2.1, when serving PL/SQL stored procedures, allows remote attackers to cause a denial of service via a long HTTP GET request.
network
low complexity
oracle
5.0
1997-07-22 CVE-1999-0971 Unspecified vulnerability in University of Cambridge Exim
Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file.
local
low complexity
university-of-cambridge
7.2
1997-07-21 CVE-1999-1208 Unspecified vulnerability in IBM AIX 3.2.5/4.1/4.2
Buffer overflow in ping in AIX 4.2 and earlier allows local users to gain root privileges via a long command line argument.
local
low complexity
ibm
7.2
1997-07-21 CVE-1999-0247 Unspecified vulnerability in ISC INN
Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands.
network
low complexity
isc
7.5
1997-07-21 CVE-1999-0122 Unspecified vulnerability in IBM AIX
Buffer overflow in AIX lchangelv gives root access.
local
low complexity
ibm
7.2
1997-07-17 CVE-1999-1182 Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
local
low complexity
delix caldera debian lst redhat suse
7.2
1997-07-16 CVE-1999-0030 Unspecified vulnerability in SGI Irix
root privileges via buffer overflow in xlock command on SGI IRIX systems.
local
low complexity
sgi
7.2