ReportizFlow
Filtered by vendor
Subscriptions
Total
29886 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0493 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd. | ||||
| CVE-1999-0495 | 2025-04-03 | N/A | ||
| A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. | ||||
| CVE-2004-0852 | 1 Htget | 1 Htget | 2025-04-03 | N/A |
| Buffer overflow in htget 0.93 allows remote attackers to execute arbitrary code via a crafted URL. | ||||
| CVE-1999-0508 | 2025-04-03 | N/A | ||
| An account on a router, firewall, or other network device has a default, null, blank, or missing password. | ||||
| CVE-1999-0523 | 2025-04-03 | N/A | ||
| ICMP echo (ping) is allowed from arbitrary hosts. | ||||
| CVE-1999-0556 | 2025-04-03 | N/A | ||
| Two or more Unix accounts have the same UID. | ||||
| CVE-1999-0568 | 1 Sun | 1 Solaris | 2025-04-03 | N/A |
| rpc.admind in Solaris is not running in a secure mode. | ||||
| CVE-1999-0582 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2025-04-03 | N/A |
| A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc. | ||||
| CVE-2006-1480 | 1 Duda | 1 Webalbum | 2025-04-03 | N/A |
| Directory traversal vulnerability in start.php in WebAlbum 2.02 allows remote attackers to include arbitrary files and execute commands by (1) injecting code into local log files via GET commands, then (2) accessing that log via a .. (dot dot) sequence and a trailing null (%00) byte in the skin2 COOKIE parameter. | ||||
| CVE-1999-0603 | 2025-04-03 | N/A | ||
| In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc. | ||||
| CVE-1999-0627 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| The rexd service is running, which uses weak authentication that can allow an attacker to execute commands. | ||||
| CVE-1999-0639 | 2025-04-03 | N/A | ||
| The chargen service is running. | ||||
| CVE-1999-0661 | 2025-04-03 | N/A | ||
| A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 and 2.1f, (4) IRC client (ircII) ircII 2.2.9, (5) OpenSSH 3.4p1, or (6) Sendmail 8.12.6. | ||||
| CVE-1999-0668 | 1 Microsoft | 1 Internet Explorer | 2025-04-03 | N/A |
| The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy. | ||||
| CVE-2006-3548 | 1 Horde | 1 Horde | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 allow remote attackers to inject arbitrary web script or HTML via a (1) javascript URI or an external (2) http, (3) https, or (4) ftp URI in the url parameter in services/go.php (aka the dereferrer), (5) a javascript URI in the module parameter in services/help (aka the help viewer), and (6) the name parameter in services/problem.php (aka the problem reporting screen). | ||||
| CVE-1999-0691 | 4 Cde, Digital, Ibm and 1 more | 5 Cde, Unix, Aix and 2 more | 2025-04-03 | N/A |
| Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. | ||||
| CVE-1999-0694 | 1 Ibm | 1 Aix | 2025-04-03 | N/A |
| Denial of service in AIX ptrace system call allows local users to crash the system. | ||||
| CVE-1999-0708 | 1 Infodrom | 1 Cfingerd | 2025-04-03 | N/A |
| Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field. | ||||
| CVE-1999-0723 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2025-04-03 | N/A |
| The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user input. | ||||
| CVE-1999-0716 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2025-04-03 | N/A |
| Buffer overflow in Windows NT 4.0 help file utility via a malformed help file. | ||||