Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-01-01 | CVE-1999-0201 | Unspecified vulnerability in FTP A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user. | 6.4 |
| 1997-01-01 | CVE-1999-0173 | Unspecified vulnerability in Matt Wright Formmail FormMail CGI program can be used by web servers other than the host server that the program resides on. | 5.0 |
| 1997-01-01 | CVE-1999-0166 | Unspecified vulnerability in SUN NFS NFS allows users to use a "cd .." command to access other directories besides the exported file system. | 5.0 |
| 1996-12-18 | CVE-1999-0128 | Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. | 5.0 |
| 1996-12-10 | CVE-1999-0096 | Sendmail decode alias can be used to overwrite sensitive files. | 5.0 |
| 1996-12-05 | CVE-1999-1401 | Unspecified vulnerability in SGI Irix Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook). | 4.6 |
| 1996-12-03 | CVE-1999-0129 | Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | 4.6 |
| 1996-11-22 | CVE-1999-1099 | Unspecified vulnerability in KTH Kerberos 4 Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user. | 5.0 |
| 1996-10-16 | CVE-1999-0075 | Unspecified vulnerability in Washington University Wu-Ftpd PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password. | 5.0 |
| 1996-10-08 | CVE-1999-0234 | Bash treats any character with a value of 255 as a command separator. | 4.6 |