Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-11-10 | CVE-1999-1427 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. | 6.2 |
| 1997-11-10 | CVE-1999-1426 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files. | 6.2 |
| 1997-11-10 | CVE-1999-1425 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. | 6.2 |
| 1997-11-10 | CVE-1999-1424 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries. | 6.2 |
| 1997-11-08 | CVE-1999-1069 | Unspecified vulnerability in Icat Electronic Commerce Suite 3.0.0 Directory traversal vulnerability in carbo.dll in iCat Carbo Server 3.0.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 1997-11-01 | CVE-1999-0216 | Denial of service of inetd on Linux through SYN and RST packets. | 5.0 |
| 1997-10-29 | CVE-1999-0094 | Unspecified vulnerability in IBM AIX AIX piodmgrsu command allows local users to gain additional group privileges. | 4.6 |
| 1997-10-24 | CVE-1999-1261 | Unspecified vulnerability in Metamail Corporation Metamail Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long nickname (nick) command. | 5.0 |
| 1997-10-24 | CVE-1999-1131 | Unspecified vulnerability in SGI Irix Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to cause a denial of service via a long principal, group, or organization. | 5.0 |
| 1997-10-16 | CVE-1999-0346 | Unspecified vulnerability in PHP FI CGI PHP mlog script allows an attacker to read any file on the target server. | 5.0 |