Search
153,552 CVEs · Medium severity
CVEs (153,552, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 426–450 of 153,552 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-1255 | MEDIUM | Patched | 5.0 | 1999-02-19 | Hyperseek allows remote attackers to modify the hyperseek configuration by directly calling the admin.cgi program with an edit_file action parameter. |
| CVE-1999-1256 | MEDIUM | 4.6 | 1999-03-04 | Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, … | |
| CVE-1999-1258 | MEDIUM | Patched | 5.0 | 1991-01-15 | rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information. |
| CVE-1999-1261 | MEDIUM | Patched | 5.0 | 1997-10-24 | Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long nickname (nick) command. |
| CVE-1999-1262 | MEDIUM | 5.1 | 1997-08-01 | Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security mo… | |
| CVE-1999-1265 | MEDIUM | Patched | 5.0 | 1998-09-22 | SMTP server in SLmail 3.1 and earlier allows remote attackers to cause a denial of service via malformed commands whose arguments begin with a "(" (parenthesis) character, … |
| CVE-1999-1266 | MEDIUM | Patched | 5.0 | 1997-06-13 | rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system. |
| CVE-1999-1267 | MEDIUM | 5.0 | 1997-05-05 | KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server. | |
| CVE-1999-1270 | MEDIUM | 4.6 | 1998-07-11 | KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys … | |
| CVE-1999-1274 | MEDIUM | 6.4 | 1997-12-29 | iPass RoamServer 3.1 creates temporary files with world-writable permissions. | |
| CVE-1999-1275 | MEDIUM | 4.6 | 1997-09-08 | Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges. | |
| CVE-1999-1277 | MEDIUM | 4.6 | 1998-12-24 | BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privile… | |
| CVE-1999-1279 | MEDIUM | Patched | 5.0 | 1999-12-31 | An interaction between the AS/400 shared folders feature and Microsoft SNA Server 3.0 and earlier allows users to view each other's folders when the users share the same Lo… |
| CVE-1999-1281 | MEDIUM | 5.0 | 1998-12-26 | Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program. | |
| CVE-1999-1282 | MEDIUM | 4.6 | 1998-12-10 | RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges. | |
| CVE-1999-1283 | MEDIUM | 5.0 | 1998-08-14 | Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag. | |
| CVE-1999-1284 | MEDIUM | 5.0 | 1998-11-05 | NukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port (1080) without sending any data, which causes the CPU usage to rise to … | |
| CVE-1999-1287 | MEDIUM | Patched | 5.0 | 1999-12-31 | Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface. |
| CVE-1999-1288 | MEDIUM | 4.6 | 1998-11-19 | Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to r… | |
| CVE-1999-1290 | MEDIUM | 5.1 | 1999-12-31 | Buffer overflow in nftp FTP client version 1.40 allows remote malicious FTP servers to cause a denial of service, and possibly execute arbitrary commands, via a long respon… | |
| CVE-1999-1291 | MEDIUM | 5.0 | 1998-10-05 | TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset (RST) via a PSH ACK or o… | |
| CVE-1999-1295 | MEDIUM | 4.6 | 1996-09-17 | Transarc DCE Distributed File System (DFS) 1.1 for Solaris 2.4 and 2.5 does not properly initialize the grouplist for users who belong to a large number of groups, which co… | |
| CVE-1999-1308 | MEDIUM | 4.6 | 1997-07-31 | Certain programs in HP-UX 10.20 do not properly handle large user IDs (UID) or group IDs (GID) over 60000, which could allow local users to gain privileges. | |
| CVE-1999-1311 | MEDIUM | 4.6 | 1997-01-07 | Vulnerability in dtlogin and dtsession in HP-UX 10.20 and 10.10 allows local users to bypass authentication and gain privileges. | |
| CVE-1999-1313 | MEDIUM | Patched | 4.6 | 1996-05-23 | Manual page reader (man) in FreeBSD 2.2 and earlier allows local users to gain privileges via a sequence of commands. |