Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-1229 1 Id Software 1 Quake 2 Server 2026-04-16 N/A
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file.
CVE-1999-1231 1 Ssh 1 Ssh2 2026-04-16 N/A
ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server.
CVE-1999-1233 1 Microsoft 1 Internet Information Server 2026-04-16 N/A
IIS 4.0 does not properly restrict access for the initial session request from a user's IP address if the address does not resolve to a DNS domain, aka the "Domain Resolution" vulnerability.
CVE-1999-1234 1 Microsoft 1 Windows Nt 2026-04-16 N/A
LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1) SamrOpenDomain, (2) SamrEnumDomainUsers, and (3) SamrQueryDomainInfo.
CVE-1999-1236 1 True North 1 Internet Anywhere Mail Server 2026-04-16 N/A
Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.
CVE-1999-1240 1 Gracenote 1 Cddbd 2026-04-16 N/A
Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.
CVE-1999-1249 1 Hp 1 Hp-ux 2026-04-16 N/A
movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges.
CVE-1999-1253 1 Sco 2 Internet Faststart, Openserver 2026-04-16 N/A
Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges.
CVE-1999-1254 1 Microsoft 3 Windows 95, Windows 98, Windows Nt 2026-04-16 N/A
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables.
CVE-1999-1255 1 Ccs Network 1 Hyperseek Search Engine 2026-04-16 N/A
Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admin.cgi program with an edit_file action parameter.
CVE-1999-1256 1 Oracle 1 Database Assistant 2026-04-16 N/A
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file.
CVE-1999-1257 1 Xyplex 1 Maxserver Xyplex Terminal Server 2026-04-16 N/A
Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the password prompt by entering (1) a CTRL-Z character, or (2) a ? (question mark).
CVE-1999-1260 1 Hughes 1 Msql 2026-04-16 N/A
mSQL (Mini SQL) 2.0.6 allows remote attackers to obtain sensitive server information such as logged users, database names, and server version via the ServerStats query.
CVE-1999-1261 1 Metamail Corporation 1 Metamail 2026-04-16 N/A
Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long nickname (nick) command.
CVE-1999-1262 1 Netscape 1 Communicator 2026-04-16 N/A
Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct unauthorized activities.
CVE-1999-1263 1 Metamail Corporation 1 Metamail 2026-04-16 N/A
Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file.
CVE-1999-1264 1 Ramp Networks 1 Webramp 2026-04-16 N/A
WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled.
CVE-1999-1265 1 Seatle Lab Software 1 Slmail 2026-04-16 N/A
SMTP server in SLmail 3.1 and earlier allows remote attackers to cause a denial of service via malformed commands whose arguments begin with a "(" (parenthesis) character, such as (1) SEND, (2) VRFY, (3) EXPN, (4) MAIL FROM, (5) RCPT TO.
CVE-1999-1266 1 Metamail Corporation 1 Metamail 2026-04-16 N/A
rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system.
CVE-1999-1268 1 Kde 1 Kde 2026-04-16 N/A
Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices.