Export limit exceeded: 351147 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 351147 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (351147 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1277 | 1 Backweb Technologies | 1 Backweb Client | 2026-04-16 | N/A |
| BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password. | ||||
| CVE-2000-0189 | 1 Allaire | 1 Coldfusion Server | 2026-04-16 | N/A |
| ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files. | ||||
| CVE-1999-0160 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections. | ||||
| CVE-1999-0161 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering. | ||||
| CVE-1999-1278 | 1 Nlog | 1 Nlog | 2026-04-16 | N/A |
| nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which could allow remote attackers to execute certain commands via (1) nlog-smb.pl or (2) rpc-nlog.pl. | ||||
| CVE-1999-0162 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering. | ||||
| CVE-2000-0190 | 1 Aol | 1 Instant Messenger | 2026-04-16 | N/A |
| AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value. | ||||
| CVE-1999-0164 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| A race condition in the Solaris ps command allows an attacker to overwrite critical files. | ||||
| CVE-1999-1279 | 1 Microsoft | 1 Sna Server | 2026-04-16 | N/A |
| An interaction between the AS/400 shared folders feature and Microsoft SNA Server 3.0 and earlier allows users to view each other's folders when the users share the same Local APPC LU. | ||||
| CVE-1999-0165 | 3 Bsdi, Linux, Sun | 5 Bsd Os, Linux Kernel, Nfs and 2 more | 2026-04-16 | N/A |
| NFS cache poisoning. | ||||
| CVE-1999-1280 | 1 Hummingbird | 1 Exceed | 2026-04-16 | N/A |
| Hummingbird Exceed 6.0.1.0 inadvertently includes a DLL that was meant for development and testing, which logs user names and passwords in cleartext in the test.log file. | ||||
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | ||||
| CVE-1999-1281 | 1 Winddance Networks Corporation | 1 Breeze Network Server | 2026-04-16 | N/A |
| Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program. | ||||
| CVE-1999-0167 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. | ||||
| CVE-1999-1282 | 1 Realnetworks | 1 Realsystem G2 Server | 2026-04-16 | N/A |
| RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges. | ||||
| CVE-2000-0191 | 1 Axis | 1 Storpoint Cd | 2026-04-16 | N/A |
| Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack. | ||||
| CVE-1999-0168 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions. | ||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | ||||
| CVE-1999-1283 | 1 Opera Software | 1 Opera Web Browser | 2026-04-16 | N/A |
| Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag. | ||||
| CVE-1999-0170 | 1 Digital | 1 Ultrix | 2026-04-16 | N/A |
| Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list. | ||||