Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
1995-10-13 CVE-1999-0073 Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.
network
low complexity
sgi digital
critical
10.0
1995-08-17 CVE-1999-0203 Unspecified vulnerability in Eric Allman Sendmail 8.6.10
In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.
network
low complexity
eric-allman
critical
10.0
1995-02-17 CVE-1999-0235 Unspecified vulnerability in Ncsa web Server 1.3/1.4/1.4.1
Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access.
network
low complexity
ncsa
critical
10.0
1995-02-01 CVE-1999-0232 Unspecified vulnerability in Ncsa Httpd Project Ncsa Httpd 1.5C
Buffer overflow in NCSA WebServer (version 1.5c) gives remote access.
network
low complexity
ncsa-httpd-project
critical
10.0
1993-09-17 CVE-1999-1138 Unspecified vulnerability in SCO products
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
network
low complexity
sco
critical
10.0
1993-08-09 CVE-1999-0124 Unspecified vulnerability in University of Minnesota Gopherd
Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon.
network
low complexity
university-of-minnesota
critical
10.0
1992-07-21 CVE-1999-0214 Unspecified vulnerability in SUN Sunos 4.1/4.1.1/4.1.2
Denial of service by sending forged ICMP unreachable packets.
network
low complexity
sun
critical
10.0
1992-04-27 CVE-1999-1119 Unspecified vulnerability in IBM AIX
FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary commands.
network
low complexity
ibm
critical
10.0
1992-02-25 CVE-1999-1059 Unspecified vulnerability in ATT Svr4 4.0
Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote attackers to execute arbitrary commands.
network
low complexity
att
critical
10.0
1991-12-31 CVE-1999-1032 Unspecified vulnerability in Digital Ultrix 4.1/4.2
Vulnerability in LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 allows attackers to gain root privileges.
network
low complexity
digital
critical
10.0