CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-1999-1165
https://notcve.org/view.php?id=CVE-1999-1165
21 Jul 1999 — GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files. • http://marc.info/?l=bugtraq&m=93268249021561&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 1CVE-1999-0491 – GNU GNU bash 1.14 - Path Embedded Code Execution
https://notcve.org/view.php?id=CVE-1999-0491
20 Apr 1999 — The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. • https://www.exploit-db.com/exploits/19095 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-1999-0402
https://notcve.org/view.php?id=CVE-1999-0402
02 Jan 1999 — wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0402 •
CVSS: 9.1EPSS: 1%CPEs: 32EXPL: 0CVE-1999-0017
https://notcve.org/view.php?id=CVE-1999-0017
10 Dec 1997 — FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0017 •
CVSS: 7.5EPSS: 0%CPEs: 23EXPL: 7CVE-1999-0016 – FreeBSD 2.x / HP-UX 9/10/11 / Kernel 2.0.3 / Windows NT 4.0/Server 2003 / NetBSD 1 - 'land.c' loopback Denial of Service
https://notcve.org/view.php?id=CVE-1999-0016
01 Dec 1997 — Land IP denial of service. • https://www.exploit-db.com/exploits/20810 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-1999-0216
https://notcve.org/view.php?id=CVE-1999-0216
01 Nov 1997 — Denial of service of inetd on Linux through SYN and RST packets. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0216 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0150
https://notcve.org/view.php?id=CVE-1999-0150
01 Jul 1997 — The Perl fingerd program allows arbitrary command execution from remote users. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0150 •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0035
https://notcve.org/view.php?id=CVE-1999-0035
29 May 1997 — Race condition in signal handling routine in ftpd, allowing read/write arbitrary files. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0035 •
CVSS: 7.5EPSS: 96%CPEs: 4EXPL: 0CVE-1999-0612
https://notcve.org/view.php?id=CVE-1999-0612
01 Mar 1997 — A version of finger is running that exposes valid user information to any entity on the network. • https://www.cve.org/CVERecord?id=CVE-1999-0612 •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 2CVE-1999-0041 – UNICOS 9/MAX 1.3/mk 1.5 / AIX 4.2 / libc 5.2.18 / RedHat 4 / IRIX 6 / Slackware 3 - NLS
https://notcve.org/view.php?id=CVE-1999-0041
13 Feb 1997 — Buffer overflow in NLS (Natural Language Service). • https://www.exploit-db.com/exploits/19551 •