Vulnerabilities > ISC
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-05-11 | CVE-1999-0785 | Unspecified vulnerability in ISC INN 2.0/2.1/2.2 The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file. | 7.2 |
| 1999-05-11 | CVE-1999-0754 | Unspecified vulnerability in ISC INN The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable. | 10.0 |
| 1998-04-10 | CVE-1999-1499 | Unspecified vulnerability in ISC Bind 4.9/8.1 named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used. | 2.1 |
| 1998-04-08 | CVE-1999-0011 | Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer. | 10.0 |
| 1998-04-08 | CVE-1999-0010 | Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | 5.0 |
| 1998-04-08 | CVE-1999-0009 | Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. | 10.0 |
| 1997-08-13 | CVE-1999-0024 | DNS cache poisoning via BIND, by predictable query IDs. | 5.0 |
| 1997-07-21 | CVE-1999-0247 | Unspecified vulnerability in ISC INN Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands. | 7.5 |
| 1997-07-01 | CVE-1999-0184 | Unspecified vulnerability in ISC Bind 9.4.0 When compiled with the -DALLOW_UPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. | 6.4 |
| 1997-02-20 | CVE-1999-0868 | ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN. | 7.2 |