Total
29909 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1209 | 1 Sco | 2 Open Desktop, Openserver | 2026-04-16 | N/A |
| Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges. | ||||
| CVE-1999-1216 | 1 Cisco | 1 Router | 2026-04-16 | N/A |
| Cisco routers 9.17 and earlier allow remote attackers to bypass security restrictions via certain IP source routed packets that should normally be denied using the "no ip source-route" command. | ||||
| CVE-1999-1221 | 1 Digital | 1 Unix | 2026-04-16 | N/A |
| dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file. | ||||
| CVE-1999-1223 | 1 Microsoft | 1 Internet Information Server | 2026-04-16 | N/A |
| IIS 3.0 allows remote attackers to cause a denial of service via a request to an ASP page in which the URL contains a large number of / (forward slash) characters. | ||||
| CVE-1999-1224 | 1 University Of Washington | 1 Imapd | 2026-04-16 | N/A |
| IMAP 4.1 BETA, and possibly other versions, does not properly handle the SIGABRT (abort) signal, which allows local users to crash the server (imapd) via certain sequences of commands, which causes a core dump that may contain sensitive password information. | ||||
| CVE-1999-1226 | 1 Netscape | 1 Communicator | 2026-04-16 | N/A |
| Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key. | ||||
| CVE-1999-1232 | 1 Sgi | 1 Irix | 2026-04-16 | N/A |
| Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program. | ||||
| CVE-1999-1235 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link. | ||||
| CVE-1999-1236 | 1 True North | 1 Internet Anywhere Mail Server | 2026-04-16 | N/A |
| Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf. | ||||
| CVE-1999-1239 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so. | ||||
| CVE-1999-1240 | 1 Gracenote | 1 Cddbd | 2026-04-16 | N/A |
| Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message. | ||||
| CVE-1999-1241 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the FileSystemObject ActiveX object. | ||||
| CVE-1999-1247 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges. | ||||
| CVE-1999-1248 | 1 Hp | 1 Hp-ux | 2026-04-16 | N/A |
| Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges. | ||||
| CVE-1999-1253 | 1 Sco | 2 Internet Faststart, Openserver | 2026-04-16 | N/A |
| Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges. | ||||
| CVE-1999-1256 | 1 Oracle | 1 Database Assistant | 2026-04-16 | N/A |
| Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file. | ||||
| CVE-1999-1266 | 1 Metamail Corporation | 1 Metamail | 2026-04-16 | N/A |
| rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system. | ||||
| CVE-1999-1270 | 1 Kde | 1 Kde | 2026-04-16 | N/A |
| KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps. | ||||
| CVE-2005-3327 | 1 Network Appliance | 1 Data Ontap | 2026-04-16 | N/A |
| Network Appliance Data ONTAP 7.0 and earlier allows iSCSI Initiators to bypass iSCSI authentication via a modified client that skips the Security (Start) mode, as required by the Login Negotiation protocol, and uses Operational mode without proving identity. | ||||
| CVE-1999-1271 | 1 Macromedia | 1 Dreamweaver | 2026-04-16 | N/A |
| Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users. | ||||