Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.
CVE-1999-0036
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
CVE-1999-0035
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
CVE-1999-0034
Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.
CVE-1999-0033
Command execution in Sun systems via buffer overflow in the at program.
CVE-1999-0032
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
CVE-1999-0031
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.
CVE-1999-0030
root privileges via buffer overflow in xlock command on SGI IRIX systems.
CVE-1999-0029
root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVE-1999-0028
root privileges via buffer overflow in login/scheme command on SGI IRIX systems.