[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Comma-separated list of all "official" CVE Entries



All,

Below is a comma-separated formatted file listing the candidates that
made it to Final Decision, and thus are official CVE entries.  These
will be among the first entries to make it to the Publication phase
when they are released to the web site.

This list should not be released to the public - we'll let the web
site do that, and besides, its size will double over the next few
weeks.  After initial public release, of course, there will be no
distribution restrictions.

It's important that you know the CVE version for any CVE data you use,
as the version will change over time.  CVE-1999-0006 in this version
might look *slightly* different than an entry in a later version
(e.g. description/reference modifications) but of course it will
always refer to the same problem.

I can make a list of candidates (and their voting status) available
upon request.  We have 140 candidates validated (i.e. there are now
140 CVE entries) and we have 160 to go.  Get your votes in!

- Steve


"CVE Version 199908272309"
"Name","Description"
"CVE-1999-0003","Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd)"
"CVE-1999-0006","Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command."
"CVE-1999-0007","Information from SSL-encrypted sessions via PKCS #1"
"CVE-1999-0008","Buffer overflow in NIS+, in Sun's rpc.nisd program"
"CVE-1999-0013","Stolen credentials from SSH clients via ssh-agent program, allowing other local users to access remote accounts belonging to the ssh-agent user."
"CVE-1999-0018","Buffer overflow in statd allows root privileges."
"CVE-1999-0019","Delete or create a file via rpc.statd, due to invalid information."
"CVE-1999-0021","Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program."
"CVE-1999-0022","Local user gains root privileges via buffer overflow in rdist, via expstr() function."
"CVE-1999-0023","Local user gains root privileges via buffer overflow in rdist, via lookup() function."
"CVE-1999-0024","DNS cache poisoning via BIND, by predictable query IDs."
"CVE-1999-0032","Buffer overflow in BSD-based lpr package allows local users to gain root privileges."
"CVE-1999-0034","Buffer overflow in suidperl (sperl), Perl 4.x and 5.x"
"CVE-1999-0036","IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files."
"CVE-1999-0038","Buffer overflow in xlock program allows local users to execute commands as root."
"CVE-1999-0039","Arbitrary command execution using webdist CGI program in IRIX."
"CVE-1999-0040","Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges."
"CVE-1999-0041","Buffer overflow in NLS (Natural Language Service)"
"CVE-1999-0043","Command execution via shell metachars in INN daemon (innd) 1.5 using ""newgroup"" and ""rmgroup"" control messages, and others."
"CVE-1999-0044","fsdump command in IRIX allows local users to obtain root access by modifying sensitive files."
"CVE-1999-0045","List of arbitrary files on Web host via nph-test-cgi script"
"CVE-1999-0046","Buffer overflow of rlogin program using TERM environmental variable."
"CVE-1999-0049","Csetup under IRIX allows arbitrary file creation or overwriting."
"CVE-1999-0050","Buffer overflow in HP-UX newgrp program"
"CVE-1999-0051","Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX."
"CVE-1999-0054","Sun's ftpd daemon can be subjected to a denial of service."
"CVE-1999-0056","Buffer overflow in Sun's ping program can give root access to local users."
"CVE-1999-0060","Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool."
"CVE-1999-0062","The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage."
"CVE-1999-0067","CGI phf program allows remote command execution through shell metacharacters."
"CVE-1999-0069","Solaris ufsrestore buffer overflow."
"CVE-1999-0072","Buffer overflow in AIX xdat gives root access to local users."
"CVE-1999-0073","Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access."
"CVE-1999-0080","wu-ftp FTP server allows root access via ""site exec"" command."
"CVE-1999-0081","wu-ftp allows files to be overwritten via the rnfr command."
"CVE-1999-0082","CWD ~root command in ftpd allows root access."
"CVE-1999-0083","getcwd() file descriptor leak in FTP"
"CVE-1999-0090","Buffer overflow in AIX rcp command allows local users to obtain root access."
"CVE-1999-0091","Buffer overflow in AIX writesrv command allows local users to obtain root access."
"CVE-1999-0093","AIX nslookup command allows local users to obtain root access by not dropping privileges correctly."
"CVE-1999-0094","AIX piodmgrsu command allows local users to gain additional group privileges."
"CVE-1999-0097","The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character)."
"CVE-1999-0099","Buffer overflow in syslog utility allows local or remote attackers to gain root privileges."
"CVE-1999-0100","Remote access in AIX innd 1.5.1, using control messages."
"CVE-1999-0117","AIX passwd allows local users to gain root access."
"CVE-1999-0120","Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root."
"CVE-1999-0128","Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death."
"CVE-1999-0130","Local users can start Sendmail in daemon mode and gain root privileges."
"CVE-1999-0131","Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users."
"CVE-1999-0132","Expreserve, used in vi and ex, allows local users to overwrite arbitrary files and gain root access."
"CVE-1999-0133","fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access."
"CVE-1999-0134","vold in Solaris 2.x allows local users to gain root access."
"CVE-1999-0135","admintool in Solaris allows a local user to write to arbitrary files and gain root access."
"CVE-1999-0136","Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access."
"CVE-1999-0137","The dip program on many Linux systems allows local users to gain root access via a buffer overflow."
"CVE-1999-0141","Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet."
"CVE-1999-0143","Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys."
"CVE-1999-0155","The ghostscript command with the -dSAFER option allows remote attackers to execute commands."
"CVE-1999-0157","Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service."
"CVE-1999-0158","Cisco PIX firewall manager (PFM) on Windows NT allows attackers to connect to port 8080 on the PFM server and retrieve any file whose name and location is known."
"CVE-1999-0159","Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login).  This applies to some IOS 9.x, 10.x, and 11.x releases."
"CVE-1999-0160","Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections."
"CVE-1999-0161","In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering."
"CVE-1999-0162","The ""established"" keyword in some Cisco IOS software allowed an attacker to bypass filtering."
"CVE-1999-0164","A race condition in the Solaris ps command allows an attacker to overwrite critical files."
"CVE-1999-0185","In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution."
"CVE-1999-0188","The passwd command in Solaris can be subjected to a denial of service."
"CVE-1999-0190","Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access."
"CVE-1999-0208","rpc.ypupdated (NIS) allows remote users to execute arbitrary commands."
"CVE-1999-0209","The SunView (SunTools) selection_svc facility allows remote users to read files."
"CVE-1999-0215","Routed allows attackers to append data to files."
"CVE-1999-0228","Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT."
"CVE-1999-0252","Buffer overflow in listserv allows arbitrary command execution."
"CVE-1999-0263","Solaris SUNWadmap can be exploited to obtain root access."
"CVE-1999-0267","Buffer overflow in NCSA HTTP daemon v1.3 allows remote command execution."
"CVE-1999-0277","The WorkMan program can be used to overwrite any file to get root access."
"CVE-1999-0293","AAA authentication on Cisco systems allows attackers to execute commands without authorization."
"CVE-1999-0294","All records in a WINS database can be deleted through SNMP for a denial of service."
"CVE-1999-0295","Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges."
"CVE-1999-0296","Solaris volrmmount program allows attackers to read any file."
"CVE-1999-0300","nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers."
"CVE-1999-0301","Buffer overflow in SunOS/Solaris ps command."
"CVE-1999-0302","SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server."
"CVE-1999-0303","Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames."
"CVE-1999-0305","BSD sysctl control does not properly restrict source routing."
"CVE-1999-0308","HP-UX gwind program allows users to modify arbitrary files."
"CVE-1999-0309","HP-UX vgdisplay program gives root access to local users."
"CVE-1999-0310","SSH 1.2.25 on HP-UX allows access to new user accounts."
"CVE-1999-0311","fpkg2swpk in HP-UX allows local users to gain root access."
"CVE-1999-0312","HP ypbind allows attackers with root privileges to modify NIS data."
"CVE-1999-0313","IRIX disk_bandwidth program allows local users to gain root access using relative pathnames."
"CVE-1999-0314","IRIX ioconfig program allows local users to gain root access using relative pathnames."
"CVE-1999-0316","Buffer overflow in Linux splitvt command gives root access to local users."
"CVE-1999-0320","SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files."
"CVE-1999-0324","ppl program in HP-UX allows local users to create root files through symlinks."
"CVE-1999-0325","vhe_u_mnt program in HP-UX allows local users to create root files through symlinks."
"CVE-1999-0326","Vulnerability in HP-UX mediainit program."
"CVE-1999-0327","SGI syserr program allows local users to corrupt files."
"CVE-1999-0328","SGI permissions program allows local users to gain root privileges."
"CVE-1999-0329","SGI mediad program allows local users to gain root access."
"CVE-1999-0332","Buffer overflow in NetMeeting allows denial of service and remote command execution."
"CVE-1999-0334","In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access."
"CVE-1999-0337","AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled."
"CVE-1999-0338","AIX Licensed Program Product performance tools allow local users to gain root access."
"CVE-1999-0340","Buffer overflow in Linux Slackware crond program allows local users to gain root access."
"CVE-1999-0341","Buffer overflow in the Linux mail program ""deliver"" allows local users to gain root access."
"CVE-1999-0342","Linux PAM modules allow local users to gain root access using temporary files."
"CVE-1999-0344","NT users can gain debug-level access on a system process using the Sechole exploit."
"CVE-1999-0353","rpc.pcnfsd in HP gives remote root access by changing the permissions on the main printer spool directory."
"CVE-1999-0357","Denial of service in Windows systems using malformed oshare packets."
"CVE-1999-0367","NetBSD netstat command allows local users to access kernel memory."
"CVE-1999-0369","The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access."
"CVE-1999-0374","Debian Linux cfengine package is susceptible to a symlink attack."
"CVE-1999-0396","A race condition between the select() and accept() calls in NetBSD TCP servers allows remote attackers to cause a denial of service."
"CVE-1999-0413","A buffer overflow in the SGI X server allows local users to gain root access through the X server font path."
"CVE-1999-0420","umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program."
"CVE-1999-0422","In some cases, NetBSD 1.3.3 mount allows local users to execute programs in some file systems that have the ""noexec"" flag set."
"CVE-1999-0423","Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges."
"CVE-1999-0430","Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor module to reload."
"CVE-1999-0432","ftp on HP-UX 11.00 allows local users to gain privileges."
"CVE-1999-0433","XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service."
"CVE-1999-0436","Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges."
"CVE-1999-0445","In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters."
"CVE-1999-0446","Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS."
"CVE-1999-0447","Local users can gain privileges using the debug utility in the MPE/iX operating system."
"CVE-1999-0463","Remote attackers can perform a denial of service using IRIX fcagent."
"CVE-1999-0466","The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device."
"CVE-1999-0468","Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component."
"CVE-1999-0471","The remote proxy server in Winroute allows a remote attacker to reconfigure the proxy without authentication through the ""cancel"" button."
"CVE-1999-0472","The SNMP default community name ""public"" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it."
"CVE-1999-0473","The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred."
"CVE-1999-0474","The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory."
"CVE-1999-0475","A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail."
"CVE-1999-0478","Denial of service in HP-UX sendmail 8.8.6 related to accepting connections."
"CVE-1999-0479","Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems."
"CVE-1999-0481","Denial of service in ""poll"" in OpenBSD."
"CVE-1999-0482","OpenBSD kernel crash through TSS handling, as caused by the crashme program."
"CVE-1999-0483","OpenBSD crash using nlink value in FFS and EXT2FS filesystems."
"CVE-1999-0484","Buffer overflow in OpenBSD ping."
"CVE-1999-0485","Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD."

Page Last Updated or Reviewed: May 22, 2007