Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-03-21 | CVE-1999-0433 | XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. | 4.6 |
| 1999-03-18 | CVE-1999-0425 | Unspecified vulnerability in Netscape Communicator 4.5 talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes. | 6.4 |
| 1999-03-17 | CVE-1999-0422 | Unspecified vulnerability in Netbsd 1.3.3 In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the "noexec" flag set. | 4.6 |
| 1999-03-11 | CVE-1999-1526 | Unspecified vulnerability in Macromedia Shockwave Flash Plugin 7.0 Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. | 5.0 |
| 1999-03-11 | CVE-1999-0416 | Unspecified vulnerability in Cisco 7XX Routers Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port. | 5.0 |
| 1999-03-08 | CVE-1999-1567 | Unspecified vulnerability in Seapine Software Testtrack Seapine Software TestTrack server allows a remote attacker to cause a denial of service (high CPU) via (1) TestTrackWeb.exe and (2) ttcgi.exe by connecting to port 99 and disconnecting without sending any data. | 5.0 |
| 1999-03-08 | CVE-1999-1254 | Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables. | 5.0 |
| 1999-03-08 | CVE-1999-0418 | Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. network low complexity | 6.4 |
| 1999-03-04 | CVE-1999-1256 | Unspecified vulnerability in Oracle Database Assistant 1.0 Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file. | 4.6 |
| 1999-03-04 | CVE-1999-0409 | Unspecified vulnerability in Suse Linux 3.5/5.2 Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access. | 4.6 |