Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-12-31 | CVE-1999-1462 | Information Exposure vulnerability in BB4 BIG Brother 1.09B/1.09C Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files. | 5.0 |
| 1999-12-31 | CVE-1999-1456 | Unspecified vulnerability in Thttpd Http Server thttpd HTTP server 2.03 and earlier allows remote attackers to read arbitrary files via a GET request with more than one leading / (slash) character in the filename. | 5.0 |
| 1999-12-31 | CVE-1999-1451 | Unspecified vulnerability in Microsoft Internet Information Server and Site Server The Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary files. | 5.0 |
| 1999-12-31 | CVE-1999-1444 | Unspecified vulnerability in Computer Software Manufaktur Alibaba 2.0 genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext. | 5.0 |
| 1999-12-31 | CVE-1999-1386 | Link Following vulnerability in Perl Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/perl-eaXXXXX file. | 5.5 |
| 1999-12-31 | CVE-1999-1379 | Unspecified vulnerability in Dnstools Software Dnstools DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a spoofed source address, which produces more traffic to the victim than was sent by the attacker. | 5.0 |
| 1999-12-31 | CVE-1999-1358 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy file to be read-only. | 4.6 |
| 1999-12-31 | CVE-1999-1339 | Vulnerability when Network Address Translation (NAT) is enabled in Linux 2.2.10 and earlier with ipchains, or FreeBSD 3.2 with ipfw, allows remote attackers to cause a denial of service (kernel panic) via a ping -R (record route) command. | 5.0 |
| 1999-12-31 | CVE-1999-1335 | Unspecified vulnerability in Redhat Linux snmpd server in cmu-snmp SNMP package before 3.3-1 in Red Hat Linux 4.0 is configured to allow remote attackers to read and write sensitive information. | 6.4 |
| 1999-12-31 | CVE-1999-1330 | The snprintf function in the db library 1.85.4 ignores the size parameter, which could allow attackers to exploit buffer overflows that would be prevented by a properly implemented snprintf. | 4.6 |