Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1998-03-18 | CVE-1999-1075 | Unspecified vulnerability in IBM AIX 4.1.5 inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | 5.0 |
| 1998-03-16 | CVE-1999-0060 | Unspecified vulnerability in Lucent products Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool. | 5.0 |
| 1998-03-01 | CVE-1999-0514 | UDP messages to broadcast addresses are allowed, allowing for a Fraggle attack that can cause a denial of service by flooding the target. network low complexity | 5.0 |
| 1998-02-21 | CVE-1999-0290 | Unspecified vulnerability in Qbik Wingate The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost. | 5.0 |
| 1998-02-14 | CVE-1999-0225 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size. | 5.0 |
| 1998-02-13 | CVE-1999-0258 | Unspecified vulnerability in Microsoft Windows 95 and Windows NT Bonk variation of teardrop IP fragmentation denial of service. | 5.0 |
| 1998-02-06 | CVE-1999-0012 | Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names. | 5.0 |
| 1998-02-02 | CVE-1999-1445 | Unspecified vulnerability in Slackware Linux 3.3/3.4 Vulnerability in imapd and ipop3d in Slackware 3.4 and 3.3 with shadowing enabled, and possibly other operating systems, allows remote attackers to cause a core dump via a short sequence of USER and PASS commands that do not provide valid usernames or passwords. | 5.0 |
| 1998-02-01 | CVE-1999-0486 | Unspecified vulnerability in AOL Instant Messenger 3.5 Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash. | 5.0 |
| 1998-02-01 | CVE-1999-0305 | The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the (1) dosourceroute or (2) forwarding variables are set, which allows remote attackers to spoof TCP connections. | 5.0 |