Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
1997-05-13 CVE-1999-1184 Unspecified vulnerability in ELM Development Group ELM 2.3
Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environmental variable.
local
low complexity
elm-development-group
4.6
1997-05-09 CVE-1999-1410 Unspecified vulnerability in SGI Irix
addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attack on the printers temporary file.
local
high complexity
sgi
6.2
1997-05-07 CVE-1999-1398 Unspecified vulnerability in SGI Irix
Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack.
local
high complexity
sgi
6.2
1997-05-07 CVE-1999-1067 Unspecified vulnerability in SGI Irix 6.3
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.
network
low complexity
sgi
5.0
1997-05-05 CVE-1999-1267 Unspecified vulnerability in KDE
KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server.
network
low complexity
kde
5.0
1997-04-02 CVE-1999-1387 Unspecified vulnerability in Microsoft Windows NT 4.0
Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25.
network
low complexity
microsoft
5.0
1997-04-01 CVE-1999-0292 Unspecified vulnerability in Microsoft Windows NT 4.0
Denial of service through Winpopup using large user names.
network
low complexity
microsoft
5.0
1997-03-14 CVE-1999-1525 Unspecified vulnerability in Macromedia Shockwave Flash Plugin 6.0
Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie.
network
high complexity
macromedia
5.1
1997-03-01 CVE-1999-1128 Unspecified vulnerability in Microsoft Internet Explorer 3.0.1
Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user.
network
high complexity
microsoft
5.1
1997-02-01 CVE-1999-0174 Unspecified vulnerability in Netscape Communicator
The view-source CGI program allows remote attackers to read arbitrary files via a ..
network
low complexity
netscape
6.4