N/A
A NETBIOS/SMB share password is the default, null, or missing.
11.5%
1997-01-01
N/A
A NETBIOS/SMB share password is guessable.
4.0%
1997-01-01
N/A
An SNMP community name is the default (e.g. public), null, or missing.
92.4%
1997-01-01
N/A
IP forwarding is enabled on a machine which is not a router or firewall.
9.0%
1997-01-01
N/A
A router or firewall allows source routed packets from arbitrary hosts.
0.8%
1997-01-01
N/A
A Windows NT local user or administrator account has a default, null, blank, or missing password.
39.5%
1997-01-01
N/A
A Windows NT local user or administrator account has a guessable password.
0.6%
1997-01-01
N/A
NETBIOS share information may be published through SNMP registry keys in NT.
4.8%
1997-01-01
N/A
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.
0.3%
1997-01-01
N/A
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
0.5%
1997-01-01
N/A
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
4.9%
1997-01-01
N/A
ICMP redirect messages may crash or lock up a host.
0.5%
1997-01-01
N/A
IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . (dot) in the URL.
3.0%
1997-01-01
N/A
Buffer overflow in listserv allows arbitrary command execution.
0.9%
1997-01-01
N/A
Denial of service in talk program allows remote attackers to disrupt a user's display.
0.7%
1997-01-01
N/A
Windows NT RSHSVC program allows remote users to execute arbitrary commands.
1.4%
1997-01-01
7.5
HIGH
ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.
17.6%
1997-01-01
N/A
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.
0.5%
1997-01-01
N/A
Sendmail 8.6.9 allows remote attackers to execute root commands, using ident.
3.2%
1997-01-01
N/A
The GNU tar command, when used in FTP sessions, may allow an attacker to execute arbitrary commands.
0.6%
1997-01-01
N/A
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.
0.9%
1997-01-01
N/A
in.rshd allows users to login with a NULL username and execute commands.
0.6%
1997-01-01
N/A
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
4.3%
1997-01-01
N/A
Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.
7.0%
1997-01-01
N/A
FormMail CGI program can be used by web servers other than the host server that the program resides on.
3.0%
1997-01-01
N/A
Denial of service in syslog by sending it a large number of superfluous messages.
0.2%
1997-01-01
N/A
Remote attackers can mount an NFS file system in Ultrix or OSF, even if it is denied on the access list.
28.1%
1997-01-01
N/A
NFS allows users to use a "cd .." command to access other directories besides the exported file system.
0.6%
1997-01-01
N/A
In older versions of Sendmail, an attacker could use a pipe character to execute root commands.
0.2%
1997-01-01
N/A
Remote access in AIX innd 1.5.1, using control messages.
1.3%
1997-01-01
N/A
Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of service.
0.1%
1996-12-24
N/A
The jj CGI program allows command execution via shell metacharacters.
0.7%
1996-12-24
N/A
aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.
0.4%
1996-12-20
N/A
Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable.
0.1%
1996-12-19
N/A
swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.
0.1%
1996-12-19
N/A
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
15.8%
1996-12-18
N/A
Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.
0.1%
1996-12-13
N/A
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
0.1%
1996-12-12
N/A
Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.
3.9%
1996-12-10
N/A
Sendmail decode alias can be used to overwrite sensitive files.
0.7%
1996-12-10
N/A
List of arbitrary files on Web host via nph-test-cgi script.
32.8%
1996-12-10
N/A
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).
0.1%
1996-12-05
9.8
CRITICAL
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
1.6%
1996-12-04
N/A
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
0.1%
1996-12-03
N/A
fsdump command in IRIX allows local users to obtain root access by modifying sensitive files.
0.2%
1996-12-03
N/A
Buffer overflow in HP-UX newgrp program.
0.9%
1996-12-01
N/A
Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.
1.3%
1996-11-26
N/A
Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user.
0.8%
1996-11-22
N/A
dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.
0.1%
1996-11-17
N/A
Local users can start Sendmail in daemon mode and gain root privileges.
0.9%
1996-11-16