From e1c2e1e36b4f99b14ddb64a82d003a3be2fe5538 Mon Sep 17 00:00:00 2001 From: Alec Berryman Date: Mon, 22 May 2006 20:52:03 +0000 Subject: NOT-FOR-US git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4050 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- data/CVE/1999.list | 60 +++++++++++++++++++++++++++--------------------------- 1 file changed, 30 insertions(+), 30 deletions(-) (limited to 'data/CVE/1999.list') diff --git a/data/CVE/1999.list b/data/CVE/1999.list index 3828c549e9..c66f500c71 100644 --- a/data/CVE/1999.list +++ b/data/CVE/1999.list @@ -257,7 +257,7 @@ CVE-1999-1181 (Vulnerability in On-Line Customer Registration software for IRIX CVE-1999-1177 (Directory traversal vulnerability in nph-publish before 1.2 allows ...) TODO: check CVE-1999-1175 (Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1167 (Cross-site scripting vulnerability in Third Voice Web annotation ...) TODO: check CVE-1999-1163 (Vulnerability in HP Series 800 S/X/V Class servers allows remote ...) @@ -335,7 +335,7 @@ CVE-1999-1103 (dxconsole in DEC OSF/1 3.2C and earlier allows local users to rea CVE-1999-1102 (lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating ...) TODO: check CVE-1999-1100 (Cisco PIX Private Link 4.1.6 and earlier does not properly process ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1099 (Kerberos 4 allows remote attackers to obtain sensitive information via ...) TODO: check CVE-1999-1098 (Vulnerability in BSD Telnet client with encryption and Kerberos 4 ...) @@ -399,13 +399,13 @@ CVE-1999-1005 (Groupwise web server GWWEB.EXE allows remote attackers to read .. CVE-1999-1004 (Buffer overflow in the POP server POProxy for the Norton Anti-Virus ...) TODO: check CVE-1999-1001 (Cisco Cache Engine allows a remote attacker to gain access via a null ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1000 (The web administration interface for Cisco Cache Engine allows remote ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0999 (Microsoft SQL 7.0 server allows a remote attacker to cause a denial of ...) NOT-FOR-US: Microsoft CVE-1999-0998 (Cisco Cache Engine allows an attacker to replace content in the cache. ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0997 (wu-ftp with FTP conversion enabled allows an attacker to execute ...) {DSA-377} - wu-ftpd 2.6.2-15 @@ -584,7 +584,7 @@ CVE-1999-0891 (The "download behavior" in Internet Explorer 5 allows r CVE-1999-0890 (iHTML Merchant allows remote attackers to obtain sensitive information ...) TODO: check CVE-1999-0889 (Cisco 675 routers running CBOS allow remote attackers to establish ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0888 (dbsnmp in Oracle Intelligent Agent allows local users to gain ...) TODO: check CVE-1999-0887 (FTGate web interface server allows remote attackers to read files via ...) @@ -748,7 +748,7 @@ CVE-1999-0778 (Buffer overflow in Xi Graphics Accelerated-X server allows local CVE-1999-0777 (IIS FTP servers may allow a remote attacker to read or delete files on ...) TODO: check CVE-1999-0775 (Cisco Gigabit Switch routers running IOS allow remote attackers to ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0774 (Buffer overflows in Mars NetWare Emulation (NWE, mars_nwe) package via ...) TODO: check CVE-1999-0773 (Buffer overflow in Solaris lpset program allows local users to gain ...) @@ -812,7 +812,7 @@ CVE-1999-0740 (Remote attackers can cause a denial of service on Linux in.telnet CVE-1999-0735 (KDE K-Mail allows local users to gain privileges via a symlink attack ...) TODO: check CVE-1999-0734 (A default configuration of CiscoSecure Access Control Server (ACS) ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0733 (Buffer overflow in VMWare 1.0.1 for Linux via a long HOME ...) TODO: check CVE-1999-0732 (The logging facilitity of the Debian smtp-refuser package allows local ...) @@ -1007,7 +1007,7 @@ CVE-1999-0447 (Local users can gain privileges using the debug utility in the MP CVE-1999-0446 (Local users can perform a denial of service in NetBSD 1.3.3 and ...) TODO: check CVE-1999-0445 (In Cisco routers under some versions of IOS 12.0 running NAT, some ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0442 (Solaris ff.core allows local users to modify files. ...) TODO: check CVE-1999-0441 (Remote attackers can perform a denial of service in WinGate machines ...) @@ -1027,7 +1027,7 @@ CVE-1999-0433 (XFree86 startx command is vulnerable to a symlink attack, allowin CVE-1999-0432 (ftp on HP-UX 11.00 allows local users to gain privileges. ...) TODO: check CVE-1999-0430 (Cisco Catalyst LAN switches running Catalyst 5000 supervisor software ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0429 (The Lotus Notes 4.5 client may send a copy of encrypted mail in the ...) TODO: check CVE-1999-0428 (OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and ...) @@ -1047,9 +1047,9 @@ CVE-1999-0420 (umapfs allows local users to gain root privileges by changing the CVE-1999-0417 (64 bit Solaris 7 procfs allows local users to perform a denial of ...) TODO: check CVE-1999-0416 (Vulnerability in Cisco 7xx series routers allows a remote attacker to ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0415 (The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0414 (In Linux before version 2.0.36, remote attackers can spoof a TCP ...) TODO: check CVE-1999-0413 (A buffer overflow in the SGI X server allows local users to gain root ...) @@ -1235,7 +1235,7 @@ CVE-1999-0295 (Solaris sysdef command allows local users to read kernel memory, CVE-1999-0294 (All records in a WINS database can be deleted through SNMP for ...) TODO: check CVE-1999-0293 (AAA authentication on Cisco systems allows attackers to execute ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0292 (Denial of service through Winpopup using large user names. ...) TODO: check CVE-1999-0291 (The WinGate proxy is installed without a password, which allows ...) @@ -1313,7 +1313,7 @@ CVE-1999-0234 (Bash treats any character with a value of 255 as a command separa CVE-1999-0233 (IIS allows users to execute arbitrary commands using .bat or .cmd ...) TODO: check CVE-1999-0230 (Buffer overflow in Cisco 7xx routers through the telnet service. ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0228 (Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT. ...) TODO: check CVE-1999-0227 (Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT ...) @@ -1411,17 +1411,17 @@ CVE-1999-0166 (NFS allows users to use a "cd .." command to access oth CVE-1999-0164 (A race condition in the Solaris ps command allows an attacker to ...) TODO: check CVE-1999-0162 (The "established" keyword in some Cisco IOS software allowed ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0161 (In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0160 (Some classic Cisco IOS devices have a vulnerability in the PPP CHAP ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0159 (Attackers can crash a Cisco IOS router or device, provided they can ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0158 (Cisco PIX firewall manager (PFM) on Windows NT allows attackers to ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0157 (Cisco PIX firewall and CBAC IP fragmentation attack results in a ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0155 (The ghostscript command with the -dSAFER option allows remote ...) TODO: check CVE-1999-0153 (Windows 95/NT out of band (OOB) data denial of service through NETBIOS ...) @@ -1567,7 +1567,7 @@ CVE-1999-0065 (Multiple buffer overflows in how dtmail handles attachments allow CVE-1999-0064 (Buffer overflow in AIX lquerylv program gives root access to local users. ...) TODO: check CVE-1999-0063 (Cisco IOS 12.0 and other versions can be crashed by malicious UDP ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0062 (The chpass command in OpenBSD allows a local user to gain root access ...) TODO: check CVE-1999-0060 (Attackers can cause a denial of service in Ascend MAX and Pipeline ...) @@ -1848,11 +1848,11 @@ CVE-1999-1469 (Buffer overflow in w3-auth CGI program in miniSQL package allows CVE-1999-1467 (Vulnerability in rcp on SunOS 4.0.x allows remote attackers from ...) TODO: check CVE-1999-1466 (Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1465 (Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1464 (Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1463 (Windows NT 4.0 before SP3 allows remote attackers to bypass firewall ...) TODO: check CVE-1999-1462 (Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b ...) @@ -2070,7 +2070,7 @@ CVE-1999-1308 (Certain programs in HP-UX 10.20 do not properly handle large user CVE-1999-1307 (Vulnerability in urestore in Novell UnixWare 1.1 allows local users to ...) TODO: check CVE-1999-1306 (Cisco IOS 9.1 and earlier does not properly handle extended IP access ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1305 (Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local ...) TODO: check CVE-1999-1304 (Vulnerability in login in SCO UNIX 4.2 and earlier allows local users ...) @@ -2208,7 +2208,7 @@ CVE-1999-1219 (Vulnerability in sgihelp in the SGI help system and print manager CVE-1999-1218 (Vulnerability in finger in Commodore Amiga UNIX 2.1p2a and earlier ...) TODO: check CVE-1999-1216 (Cisco routers 9.17 and earlier allow remote attackers to bypass ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1213 (Vulnerability in telnet service in HP-UX 10.30 allows attackers to ...) TODO: check CVE-1999-1212 (Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local ...) @@ -2298,11 +2298,11 @@ CVE-1999-1133 (HP-UX 9.x and 10.x running X windows may allow local attackers to CVE-1999-1130 (Default configuration of the search engine in Netscape Enterprise ...) TODO: check CVE-1999-1129 (Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1128 (Internet Explorer 3.01 on Windows 95 allows remote malicious web sites ...) NOT-FOR-US: Microsoft CVE-1999-1126 (Cisco Resource Manager (CRM) 1.1 and earlier creates certain files ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1125 (Oracle Webserver 2.1 and earlier runs setuid root, but the ...) TODO: check CVE-1999-1124 (HTTP Client application in ColdFusion allows remote attackers to ...) @@ -2406,7 +2406,7 @@ CVE-1999-1046 (Buffer overflow in IMonitor in IMail 5.0 allows remote attackers CVE-1999-1043 (Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) ...) NOT-FOR-US: Microsoft CVE-1999-1042 (Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-1041 (Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 ...) TODO: check CVE-1999-1040 (Vulnerabilities in (1) ipxchk and (2) ipxlink in NetWare Client 1.0 on ...) @@ -2524,7 +2524,7 @@ CVE-1999-0845 (Buffer overflow in SCO su program allows local users to gain root CVE-1999-0844 (Denial of service in MDaemon WorldClient and WebConfig services via ...) TODO: check CVE-1999-0843 (Denial of service in Cisco routers running NAT via a PORT command from ...) - TODO: check + NOT-FOR-US: Cisco CVE-1999-0841 (Buffer overflow in CDE mailtool allows local users to gain root ...) TODO: check CVE-1999-0840 (Buffer overflow in CDE dtmail and dtmailpr programs allows local users ...) -- cgit v1.2.3