Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-03-05 | CVE-1999-0410 | Unspecified vulnerability in SUN Sunos The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access. | 7.2 |
| 1999-03-01 | CVE-1999-0476 | Unspecified vulnerability in SCO Openserver A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user. | 7.2 |
| 1999-03-01 | CVE-1999-0440 | The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. | 7.5 |
| 1999-03-01 | CVE-1999-0435 | Unspecified vulnerability in HP Hp-Ux MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM. | 7.2 |
| 1999-03-01 | CVE-1999-0429 | Unspecified vulnerability in IBM Lotus Notes 4.5 The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference. | 7.5 |
| 1999-03-01 | CVE-1999-0413 | Unspecified vulnerability in SGI Irix A buffer overflow in the SGI X server allows local users to gain root access through the X server font path. | 7.2 |
| 1999-02-24 | CVE-1999-1247 | Unspecified vulnerability in HP Hp-Ux 9 Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges. | 7.2 |
| 1999-02-22 | CVE-1999-0379 | Unspecified vulnerability in Microsoft Backoffice Resource KIT 2.0 Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. | 7.5 |
| 1999-02-20 | CVE-1999-1168 | Unspecified vulnerability in ISS Internet Security Scanner 5.3 install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file. | 7.2 |
| 1999-02-19 | CVE-1999-0412 | Unspecified vulnerability in Microsoft products In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension. | 7.5 |