| 1999-12-30 | CVE-1999-0001 | Improper Input Validation vulnerability in multiple products
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets. | 5.0 |
| 1999-07-15 | CVE-1999-1518 | Denial of Service vulnerability in Multiple Vendor Shared Memory
Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults. | 5.0 |
| 1999-02-18 | CVE-1999-0405 | A buffer overflow in lsof allows local users to obtain root privilege. | 7.2 |
| 1998-11-04 | CVE-1999-0052 | IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. | 5.0 |
| 1997-12-10 | CVE-1999-0017 | FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. | 7.5 |
| 1997-05-01 | CVE-1999-0040 | Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. | 7.2 |
| 1997-04-07 | CVE-1999-1298 | Unspecified vulnerability in Freebsd
Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain system resources. | 7.5 |
| 1997-01-01 | CVE-1999-0345 | Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | 5.0 |
| 1996-12-19 | CVE-1999-1385 | Unspecified vulnerability in Freebsd
Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable. | 7.2 |
| 1996-10-25 | CVE-1999-0032 | Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. | 7.2 |