Total
365117 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-1999-1249 | 1 Hp | 1 Hp-ux | 2026-06-16 | 4.6 MEDIUM | N/A |
| movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges. | |||||
| CVE-1999-1248 | 1 Hp | 1 Hp-ux | 2026-06-16 | 4.6 MEDIUM | N/A |
| Vulnerability in Support Watch (aka SupportWatch) in HP-UX 8.0 through 9.0 allows local users to gain privileges. | |||||
| CVE-1999-1247 | 1 Hp | 1 Hp-ux | 2026-06-16 | 7.2 HIGH | N/A |
| Vulnerability in HP Camera component of HP DCE/9000 in HP-UX 9.x allows attackers to gain root privileges. | |||||
| CVE-1999-1246 | 1 Microsoft | 1 Site Server | 2026-06-16 | 7.5 HIGH | N/A |
| Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintext in the TMLBQueue network share, which has insecure default permissions, allowing remote attackers to read the passwords and gain privileges. | |||||
| CVE-1999-1245 | 1 Ucd-snmp | 1 Ucd-snmp | 2026-06-16 | 5.0 MEDIUM | N/A |
| vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain sensitive information. | |||||
| CVE-1999-1244 | 1 Darren Reed | 1 Ipfilter | 2026-06-16 | 7.2 HIGH | N/A |
| IPFilter 3.2.3 through 3.2.10 allows local users to modify arbitrary files via a symlink attack on the saved output file. | |||||
| CVE-1999-1243 | 1 Sgi | 1 Irix | 2026-06-16 | 4.6 MEDIUM | N/A |
| SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges. | |||||
| CVE-1999-1242 | 1 Hp | 1 Hp-ux | 2026-06-16 | 4.6 MEDIUM | N/A |
| Vulnerability in subnetconfig in HP-UX 9.01 and 9.0 allows local users to gain privileges. | |||||
| CVE-1999-1241 | 1 Microsoft | 1 Internet Explorer | 2026-06-16 | 10.0 HIGH | N/A |
| Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the FileSystemObject ActiveX object. | |||||
| CVE-1999-1240 | 1 Gracenote | 1 Cddbd | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message. | |||||
| CVE-1999-1239 | 1 Hp | 1 Hp-ux | 2026-06-16 | 4.6 MEDIUM | N/A |
| HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so. | |||||
| CVE-1999-1238 | 1 Hp | 1 Hp-ux | 2026-06-16 | 4.6 MEDIUM | N/A |
| Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges. | |||||
| CVE-1999-1237 | 1 Apache | 1 Http Server | 2026-06-16 | 10.0 HIGH | N/A |
| Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods. | |||||
| CVE-1999-1236 | 1 True North | 1 Internet Anywhere Mail Server | 2026-06-16 | 4.6 MEDIUM | N/A |
| Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf. | |||||
| CVE-1999-1235 | 1 Microsoft | 1 Internet Explorer | 2026-06-16 | 4.6 MEDIUM | N/A |
| Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link. | |||||
| CVE-1999-1234 | 1 Microsoft | 1 Windows Nt | 2026-06-16 | 5.0 MEDIUM | N/A |
| LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1) SamrOpenDomain, (2) SamrEnumDomainUsers, and (3) SamrQueryDomainInfo. | |||||
| CVE-1999-1233 | 1 Microsoft | 1 Internet Information Server | 2026-06-16 | 7.5 HIGH | N/A |
| IIS 4.0 does not properly restrict access for the initial session request from a user's IP address if the address does not resolve to a DNS domain, aka the "Domain Resolution" vulnerability. | |||||
| CVE-1999-1232 | 1 Sgi | 1 Irix | 2026-06-16 | 7.2 HIGH | N/A |
| Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program. | |||||
| CVE-1999-1231 | 1 Ssh | 1 Ssh2 | 2026-06-16 | 5.0 MEDIUM | N/A |
| ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remote attackers to determine user account names on the server. | |||||
| CVE-1999-1230 | 1 Id Software | 1 Quake 2 | 2026-06-16 | 5.0 MEDIUM | N/A |
| Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a source address of 127.0.0.1, which causes the server to attempt to connect to itself. | |||||
