Search
153,552 CVEs · Medium severity
CVEs (153,552, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 376–400 of 153,552 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-1131 | MEDIUM | 5.0 | 1997-10-24 | Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to cause a denial of service via a long princi… | |
| CVE-1999-1132 | MEDIUM | 5.0 | 1999-12-31 | Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information Field (RIF) field with a hop cou… | |
| CVE-1999-1133 | MEDIUM | 4.6 | 1997-09-01 | HP-UX 9.x and 10.x running X windows may allow local attackers to gain privileges via (1) vuefile, (2) vuepad, (3) dtfile, or (4) dtpad, which do not authenticate users. | |
| CVE-1999-1136 | MEDIUM | Patched | 4.6 | 1998-07-30 | Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or mod… |
| CVE-1999-1148 | MEDIUM | Patched | 5.0 | 1999-12-31 | FTP service in IIS 4.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via many passive (PASV) connections at the same time. |
| CVE-1999-1149 | MEDIUM | 5.0 | 1998-07-16 | Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a long string to the FTP port. | |
| CVE-1999-1151 | MEDIUM | 5.0 | 1998-06-03 | Compaq/Microcom 6000 Access Integrator does not cause a session timeout after prompting for a username or password, which allows remote attackers to cause a denial of servi… | |
| CVE-1999-1156 | MEDIUM | Patched | 5.0 | 1999-05-17 | BisonWare FTP Server 4.1 and earlier allows remote attackers to cause a denial of service via a malformed PORT command that contains a non-numeric character and a large num… |
| CVE-1999-1157 | MEDIUM | Patched | 5.0 | 1999-12-31 | Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP address… |
| CVE-1999-1159 | MEDIUM | 4.6 | 1998-12-29 | SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without being root. | |
| CVE-1999-1162 | MEDIUM | Patched | 6.4 | 1993-05-24 | Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the system. |
| CVE-1999-1164 | MEDIUM | 5.0 | 1999-06-25 | Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang. | |
| CVE-1999-1167 | MEDIUM | 6.4 | 1999-12-31 | Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read sensitive data and generate fake web pages for other Third Voice users … | |
| CVE-1999-1169 | MEDIUM | Patched | 5.0 | 1999-02-04 | nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets. |
| CVE-1999-1170 | MEDIUM | 4.6 | 1999-01-02 | IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920. | |
| CVE-1999-1171 | MEDIUM | 4.6 | 1999-02-02 | IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920. | |
| CVE-1999-1172 | MEDIUM | 5.0 | 1999-01-14 | By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared. | |
| CVE-1999-1174 | MEDIUM | 4.6 | 2001-12-21 | ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting… | |
| CVE-1999-1177 | MEDIUM | Patched | 5.0 | 1999-12-31 | Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the pathname for an upload operation. |
| CVE-1999-1178 | MEDIUM | Patched | 5.0 | 1998-06-10 | Sambar Server 4.1 beta allows remote attackers to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script. |
| CVE-1999-1180 | MEDIUM | Patched | 5.0 | 1999-02-16 | O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat. |
| CVE-1999-1184 | MEDIUM | Patched | 4.6 | 1997-05-13 | Buffer overflow in Elm 2.4 and earlier allows local users to gain privileges via a long TERM environmental variable. |
| CVE-1999-1187 | MEDIUM | Patched | 4.6 | 1996-08-26 | Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail. |
| CVE-1999-1188 | MEDIUM | 4.6 | 1998-12-27 | mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database. | |
| CVE-1999-1195 | MEDIUM | 5.1 | 1999-05-05 | NAI VirusScan NT 4.0.2 does not properly modify the scan.dat virus definition file during an update via FTP, but it reports that the update was successful, which could caus… |