Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
1997-01-01 CVE-1999-0201 Unspecified vulnerability in FTP
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.
network
low complexity
ftp
6.4
1997-01-01 CVE-1999-0173 Unspecified vulnerability in Matt Wright Formmail
FormMail CGI program can be used by web servers other than the host server that the program resides on.
network
low complexity
matt-wright
5.0
1997-01-01 CVE-1999-0166 Unspecified vulnerability in SUN NFS
NFS allows users to use a "cd .." command to access other directories besides the exported file system.
network
low complexity
sun
5.0
1996-12-18 CVE-1999-0128 Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
network
low complexity
sco sun digital ibm linux
5.0
1996-12-10 CVE-1999-0096 Sendmail decode alias can be used to overwrite sensitive files.
network
low complexity
bsdi freebsd sco
5.0
1996-12-05 CVE-1999-1401 Unspecified vulnerability in SGI Irix
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).
local
low complexity
sgi
4.6
1996-12-03 CVE-1999-0129 Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
local
low complexity
eric-allman sco sun hp ibm bsdi freebsd
4.6
1996-11-22 CVE-1999-1099 Unspecified vulnerability in KTH Kerberos 4
Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user.
network
low complexity
kth
5.0
1996-10-16 CVE-1999-0075 Unspecified vulnerability in Washington University Wu-Ftpd
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.
network
low complexity
washington-university
5.0
1996-10-08 CVE-1999-0234 Bash treats any character with a value of 255 as a command separator.
local
low complexity
yggdrasil sgi caldera redhat suse
4.6