National Vulnerability Database
(308747)
- CVE-1999-0695
- The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. (dot dot) attack.
- CVE-1999-0694
- Denial of service in AIX ptrace system call allows local users to crash the system.
- CVE-1999-0693
- Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
- CVE-1999-0692
- The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges.
- CVE-1999-0691
- Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
- CVE-1999-0690
- HP CDE program includes the current directory in root's PATH variable.
- CVE-1999-0689
- The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.
- CVE-1999-0688
- Buffer overflows in HP Software Distributor (SD) for HPUX 10.x and 11.x.
- CVE-1999-0687
- The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
- CVE-1999-0686
- Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.