Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1997-07-16 CVE-1999-0028 Unspecified vulnerability in SGI Irix
root privileges via buffer overflow in login/scheme command on SGI IRIX systems.
local
low complexity
sgi
7.2
1997-07-16 CVE-1999-0027 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in SGI Irix
root privileges via buffer overflow in eject command on SGI IRIX systems.
local
low complexity
sgi CWE-119
7.2
1997-07-16 CVE-1999-0026 Unspecified vulnerability in SGI Irix
root privileges via buffer overflow in pset command on SGI IRIX systems.
local
low complexity
sgi
4.6
1997-07-16 CVE-1999-0025 Unspecified vulnerability in SGI Irix
root privileges via buffer overflow in df command on SGI IRIX systems.
local
low complexity
sgi
7.2
1997-07-15 CVE-1999-0146 Unspecified vulnerability in Ncsa Campas and Servers
The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file.
network
low complexity
ncsa
7.5
1997-07-10 CVE-1999-1463 Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0
Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session.
network
low complexity
microsoft
5.0
1997-07-10 CVE-1999-0176 Unspecified vulnerability in Webgais Development Team Webgais
The Webgais program allows a remote user to execute arbitrary commands.
network
low complexity
webgais-development-team
7.5
1997-07-08 CVE-1999-0196 Unspecified vulnerability in Webgais Development Team Webgais 1.0
websendmail in Webgais 1.0 allows a remote user to access arbitrary files and execute arbitrary code via the receiver parameter ($VAR_receiver variable).
network
low complexity
webgais-development-team
5.0
1997-07-04 CVE-1999-1326 Unspecified vulnerability in Washington University Wu-Ftpd 2.4
wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files.
network
low complexity
washington-university
5.0
1997-07-01 CVE-1999-0628 The rwho/rwhod service is running, which exposes machine status and user information.
network
low complexity
netbsd ibm freebsd linux
5.0