Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
1998-06-16 CVE-1999-0783 Link Following vulnerability in Freebsd 2.2
FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system.
local
low complexity
freebsd CWE-59
5.5
1998-06-12 CVE-1999-1085 Unspecified vulnerability in SSH Secure Shell 1.2.23/1.2.25
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and computing a valid CRC-32 checksum for the packet, aka the "SSH insertion attack."
network
low complexity
ssh
5.0
1998-06-10 CVE-1999-1178 Unspecified vulnerability in Sambar Server 4.1
Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script.
network
low complexity
sambar
5.0
1998-06-10 CVE-1999-0054 Unspecified vulnerability in SUN Solaris and Sunos
Sun's ftpd daemon can be subjected to a denial of service.
network
low complexity
sun
5.0
1998-06-03 CVE-1999-1151 Unspecified vulnerability in Compaq Microcom 6000 Access Integrator Initial
Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a username or password, which allows remote attackers to cause a denial of service by connecting to the integrator without providing a username or password.
network
low complexity
compaq-microcom
5.0
1998-06-02 CVE-1999-1443 Unspecified vulnerability in Micah Software Full Armor
Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by (1) using <CTRL><ALT><DEL> and kill the process using the task manager, (2) booting the system from a separate disk, or (3) interrupting certain processes that execute while the system is booting.
local
low complexity
micah-software
4.6
1998-06-01 CVE-1999-0508 An account on a router, firewall, or other network device has a default, null, blank, or missing password.
local
low complexity
4.6
1998-06-01 CVE-1999-0501 A Unix account has a guessable password.
local
low complexity
4.6
1998-06-01 CVE-1999-0278 Unspecified vulnerability in Microsoft Internet Information Server and Windows NT
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
network
low complexity
microsoft
5.0
1998-05-21 CVE-1999-0303 Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
local
low complexity
sun netbsd digital openbsd
4.6