National Vulnerability Database
(308747)
- CVE-1999-0157
- Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.
- CVE-1999-0156
- wu-ftpd FTP daemon allows any user and password combination.
- CVE-1999-0155
- The ghostscript command with the -dSAFER option allows remote attackers to execute commands.
- CVE-1999-0154
- IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL.
- CVE-1999-0153
- Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
- CVE-1999-0152
- The DG/UX finger daemon allows remote command execution through shell metacharacters.
- CVE-1999-0151
- The SATAN session key may be disclosed if the user points the web browser to other sites, possibly allowing root access.
- CVE-1999-0150
- The Perl fingerd program allows arbitrary command execution from remote users.
- CVE-1999-0149
- The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack.
- CVE-1999-0148
- The handler CGI program in IRIX allows arbitrary command execution.