38 matches found
CVE-1999-0001
CVE-1999-0001 concerns a DoS in BSD-derived TCP/IP stacks: ip_input.c can crash or hang when remote attackers send crafted packets. The description across connected sources reiterates that remote packet crafting triggers a denial of service, with no publicly stated exploit details or mitigation i...
CVE-2008-4609
CVE-2008-4609 is a TCP state-exhaustion DoS vulnerability demonstrated by sockstress. It was described as affecting the TCP implementation in Linux, BSD-based platforms, Windows, Cisco products, and probably others. The issue enables a remote attacker to exhaust connection state, potentially rend...
CVE-1999-0024
CVE-1999-0024 describes a DNS cache-poisoning flaw in BIND caused by predictable DNS query IDs. The connected sources consistently state DNS cache poisoning via BIND, with related discussions in Red Hat/Security advisories and CERT context. The materials do not provide a concrete patch version or...
CVE-1999-0061
CVE-1999-0061 concerns the BSD line printer daemon (lpd). Multiple sources confirm a vulnerability in lpd related to file creation and deletion and remote execution. Affected software is BSD-derived lpd implementations; the root cause is not explicitly detailed in the provided documents. Reported...
CVE-1999-0002
CVE-1999-0002 is a buffer overflow in the NFS mountd service that can give remote root access on Linux-like systems. The core description across sources confirms a remote-executable overflow in mountd, potentially enabling privilege elevation without an account. Public references describe related...
CVE-1999-0038
CVE-1999-0038 describes a buffer overflow in the xlock program that allows local users to execute commands as root. The connected sources (Red Hat CVE entry, PT Security listing, and multiple feeds) corroborate a local-privilege escalation due to a buffer overflow in xlock, but the documents do n...
CVE-1999-0046
The CVE-1999-0046 entry documents a buffer overflow in the rlogin program triggered by the TERM environment variable. Red Hat/NVD entries confirm a buffer overflow affecting rlogin; no specific vulnerable versions or patches are provided in the supplied sources. Exploitation details, affected pro...
CVE-1999-0165
Technical details about CVE-1999-0165 are not publicly available in the provided documents; no concrete affected products, versions, or fixes are specified. Monitor for updates from vendors and CVE sources.
CVE-1999-0009
Summary of CVE-1999-0009 from connected documents : The issue is an inverse query buffer overflow in BIND releases 4.9 and 8. The Red Hat entry mirrors the description: the vulnerability is an inverse query buffer overflow in BIND 4.9 and 8 releases. Tenable/Nessus references indicate this is a r...
CVE-1999-0078
CVE-1999-0078 affects pcnfsd (rpc.pcnfsd). The vulnerability allows local users to change file permissions or execute arbitrary commands via arguments in the RPC call. Practical impact is limited to local-privilege abuse as described in multiple sources, with no public fixes reported in the docum...
CVE-1999-0023
CVE-1999-0023 affects the rdist utility, with the vulnerability located in the lookup() function where a buffer overflow can be exploited by a local user to gain root privileges. Connected documents consistently describe local privilege escalation via rdist’s lookup() overflow, with several advis...
CVE-1999-0043
CVE-1999-0043 affects the INN daemon (innd) v1.5, where command execution is possible via shell metacharacters in control messages (e.g., "newgroup", "rmgroup"). Documents consistently reference INN 1.5 and shell metachar vulnerabilities; remediation guidance appears as upgrading to 1.6 or later....
CVE-1999-0022
CVE-1999-0022 is supported by connected records indicating a local privilege escalation in rdist through a buffer overflow in the expstr() function, enabling a local user to gain root privileges. The affected software is rdist and the vulnerable component is the expstr() function. The provided ma...
CVE-1999-0052
CVE-1999-0052 describes an IP fragmentation denial of service affecting FreeBSD, where a remote attacker can cause the system to crash. Available connected sources corroborate the issue as a fragmented-IP handling vulnerability in FreeBSD, with descriptions consistently noting a crash condition. ...
CVE-1999-0047
Sendmail MIME conversion overflow CVE-1999-0047 affects versions 8.8.3 and 8.8.4. The vulnerability, described as a MIME conversion overflow, can allow an attacker to execute arbitrary commands as root on a remote host. Remediation: upgrade to Sendmail 8.8.5 or later. This entry is supported by m...
CVE-1999-0042
CVE-1999-0042 describes a buffer overflow in University of Washington's IMAP and POP servers. The widely cited details come from multiple connected sources, including a Nessus plugin that specifies a remote buffer overflow in the IMAP server login() function which may allow a remote user to gain ...
CVE-1999-0131
CVE-1999-0131 affects Sendmail up to version 8.7.5 and earlier, where a vulnerability in the GECOS field processing can cause a buffer overflow and denial of service that may grant root access to local users. Publicly documented by Red Hat and OpenVAS entries, as well as CVE records, the vulnerab...
CVE-1999-0034
CVE-1999-0034 affects the suidperl (sperl) component in Perl 4.x and 5.x, with the root cause described as a buffer overflow in suidperl. Documented impact indicates complete confidentiality, integrity, and availability compromises (local attack vector, no authentication, no user interaction requ...
CVE-1999-0880
CVE-1999-0880 corresponds to a memory exhaustion DoS in WU-FTPD caused by the SITE NEWER command not freeing memory. Multiple connected sources confirm the issue and reference affected software as WU-FTPD, with a specific note that versions prior to 2.6.0 are vulnerable (Nessus plugin title indic...
CVE-1999-0099
CVE-1999-0099 is a vulnerability in the syslog utility described as a buffer overflow that can allow local or remote attackers to gain root privileges. The connected sources (NVD, Red Hat CVE page, CVE list, EUVD/PTSecurity notes) corroborate the issue but do not consistently provide concrete det...
CVE-1999-0130
CVE-1999-0130 affects Sendmail 8.7.x and 8.8.x, where a local user can start the SMTP daemon in daemon mode and obtain root privileges. Multiple connected sources corroborate: OpenVAS notes local overflow in Sendmail 8.7.x/8.8.x with daemon-mode enablement; Nessus entries describe local privilege...
CVE-1999-0032
Buffer overflow in lpr used on BSD-based systems including Linux allows local users to execute arbitrary code as root via a long -C option. Root cause: overflow in handling the -C classification argument. Impact: local code execution with root privileges. No remediation details are provided in th...
CVE-1999-0040
CVE-1999-0040 affects the X Windowing System’s Xt library. The vulnerability is a buffer overflow in Xt that allows local users to execute commands with root privileges. Public details in connected sources confirm the affected component as Xt within X Windowing System, and the impact is local pri...
CVE-1999-0297
The CVE-1999-0297 issue is a buffer overflow in the Vixie Cron library up to version 3.0, enabling local users to obtain root access via a long environmental variable. The vulnerability is caused by a buffer overflow in the library's handling of environment data. Impact is local privilege escalat...
CVE-1999-0096
CVE-1999-0096 concerns Sendmail where the decode alias mechanism can be abused to overwrite sensitive files. The connected documents provide concrete details: the issue arises from a misconfigured decode alias that pipes mail to a program, enabling arbitrary file overwrites on the remote server. ...
CVE-1999-0129
CVE-1999-0129 affects Sendmail and enables local privilege escalation: authenticated or local users can write to a file and gain group permissions via a ".forward" or ":include:" file. Confirmed in multiple connected documents: OpenVAS notes Sendmail 8.8.x up to 8.8.3 vulnerable to group write/fi...
CVE-1999-0304
CVE-1999-0304 concerns the BSD mmap vulnerability where local attackers in the kmem group can modify kernel memory via devices. The connected sources repeat the description but do not provide concrete product versions, patches, or specific exploit details. The Red Hat, CVE, NVD, and related entri...
CVE-1999-0704
The CVE refers to a buffer overflow in the Berkeley automounter daemon (amd) logging facility included with the Linux am-utils package and related software. Affected component: amd’s logging facility; underlying issue: buffer overflow. Potential impact per sources: complete confidentiality, integ...
CVE-1999-0703
CVSS shows low impact with local access. The CVE notes that OpenBSD, BSDI, and other Unix systems allow users to set chflags and fchflags on character and block devices. Connected records corroborate this behavior; however, the underlying root cause, affected versions, and remediation are not det...
CVE-1999-0798
CVE-1999-0798 : The vulnerability is a buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux caused by a malformed header type. This year‑old CVE is referenced across multiple feeds (NVD, Red Hat, CVE List) with consistent description. Impact described in sources as a buffer overflow affecting...
CVE-1999-0323
CVE-1999-0323 affects FreeBSD: the mmap function allows users to modify append-only or immutable files. The connected documents reiterate this description but do not provide additional technical details, affected versions, root cause specifics, exploit information, or remediation guidance. Practi...
CVE-1999-0879
CVE-1999-0879 describes a buffer overflow in WU-FTPD and related FTP servers that allows remote attackers to gain root privileges by exploiting macro variables in a message file. The vulnerability affects the FTP server software in the late 1990s era; multiple sources (including Red Hat CVE refer...
CVE-2001-1154
CVE-2001-1154 affects Cyrus mail servers (versions 2.0.15, 2.0.16, and 1.6.24) running on BSDi 4.2 with IMAP enabled. The issue allows remote attackers to cause a denial-of-service condition (hang) by leveraging PHP IMAP clients. The available documents confirm the affected software stack and the...
CVE-1999-0305
The vulnerability CVE-1999-0305 affects the BSD sysctl facility where source-routed packets are not properly restricted. OpenBSD 2.2 and earlier and FreeBSD 2.2.5 and earlier are affected, allowing remote attackers to spoof TCP connections when the dosourceroute or forwarding variables are set. T...
CVE-2001-1133
Technical details about CVE-2001-1133 are not publicly provided in the supplied documents. No concrete affected products, versions, root cause, impact, or remediation are present. Monitor for updates in future disclosures.
CVE-2000-1103
CVE-2000-1103 affects BSD 3.0/4.0; the rcvtty program does not drop privileges before executing a script, enabling local privilege escalation by supplying an alternate Trojan horse script on the command line. CVSS base score 7.2 (HIGH) from NVD indicates complete impact to confidentiality, integr...
CVE-1999-0747
CVE-1999-0747 describes a denial-of-service in BSDi Symmetric Multiprocessing (SMP) triggered when an fstat() call is issued under very high CPU load. The available documents identify the affected context (SMP BSDi) and the vulnerable operation (fstat), but they do not provide concrete details on...
CVE-2001-1541
CVE-2001-1541 describes a buffer overflow in UUCP of BSDI BSD/OS 3.0–4.2 that lets a local attacker execute arbitrary code via a long command line argument. The vulnerability is due to unsafe handling in UUCP, enabling code execution with local access; the impact is full confidentiality, integrit...