Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
1995-08-31 CVE-1999-0155 Unspecified vulnerability in Aladdin Enterprises Ghostscript 2.6/3.22
The ghostscript command with the -dSAFER option allows remote attackers to execute commands.
network
low complexity
aladdin-enterprises
7.5
1995-08-29 CVE-1999-0164 Unspecified vulnerability in SUN Sunos 5.3/5.4
A race condition in the Solaris ps command allows an attacker to overwrite critical files.
local
high complexity
sun
6.2
1995-08-23 CVE-1999-1580 SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
local
low complexity
sendmail sun
7.2
1995-08-17 CVE-1999-0203 Unspecified vulnerability in Eric Allman Sendmail 8.6.10
In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.
network
low complexity
eric-allman
critical
10.0
1995-08-02 CVE-1999-0172 Unspecified vulnerability in Matt Wright Formmail
FormMail CGI program allows remote execution of commands.
network
low complexity
matt-wright
7.5
1995-07-31 CVE-1999-0161 Unspecified vulnerability in Cisco IOS 10.3(3.4)/10.3(4.2)
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
network
low complexity
cisco
7.5
1995-05-10 CVE-1999-1080 Unspecified vulnerability in SUN Sunos 5.7
rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and running volcheck, when the file systems do not have the nosuid option specified in rmmount.conf.
local
low complexity
sun
7.2
1995-04-03 CVE-1999-0151 Unspecified vulnerability in Satan 1.0/1.1
The SATAN session key may be disclosed if the user points the web browser to other sites, possibly allowing root access.
network
high complexity
satan
7.6
1995-03-03 CVE-1999-1243 Unspecified vulnerability in SGI Irix
SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges.
local
low complexity
sgi
4.6
1995-03-03 CVE-1999-1098 Unspecified vulnerability in BSD
Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing.
network
low complexity
bsd
5.0