CVSS: 9.1EPSS: 1%CPEs: 32EXPL: 0CVE-1999-0017
https://notcve.org/view.php?id=CVE-1999-0017
10 Dec 1997 — FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0017 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0322
https://notcve.org/view.php?id=CVE-1999-0322
29 Oct 1997 — The open() function in FreeBSD allows local attackers to write to arbitrary files. • http://www.osvdb.org/6092 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 2CVE-1999-1402 – FreeBSD 3.1 / Solaris 2.6 - Domain Socket
https://notcve.org/view.php?id=CVE-1999-1402
17 May 1997 — The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket. • https://www.exploit-db.com/exploits/19346 •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 5CVE-1999-0040 – LibXt - 'XtAppInitialize()' Local Overflow *xterm
https://notcve.org/view.php?id=CVE-1999-0040
01 May 1997 — Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. • https://www.exploit-db.com/exploits/331 •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-1999-1298
https://notcve.org/view.php?id=CVE-1999-1298
07 Apr 1997 — Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain system resources. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/old/FreeBSD-SA-97:03.sysinstall.asc •
CVSS: 10.0EPSS: 3%CPEs: 42EXPL: 1CVE-1999-0046 – BSD/OS 2.1 / DG/UX 4.0 / Debian 0.93 / Digital UNIX 4.0 B / FreeBSD 2.1.5 / HP-UX 10.34 / IBM AIX 4.1.5 / NetBSD 1.0/1.1 / NeXTstep 4.0 / SGI IRIX 6.3 / SunOS 4.1.4 - 'rlogin' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0046
06 Feb 1997 — Buffer overflow of rlogin program using TERM environmental variable. • https://www.exploit-db.com/exploits/19203 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0CVE-1999-0345
https://notcve.org/view.php?id=CVE-1999-0345
01 Jan 1997 — Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. • http://www.securityfocus.com/archive/1/62170 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-1999-1385
https://notcve.org/view.php?id=CVE-1999-1385
19 Dec 1996 — Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable. • ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/old/FreeBSD-SA-96:20.stack-overflow.asc •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-1999-0297
https://notcve.org/view.php?id=CVE-1999-0297
12 Dec 1996 — Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0297 •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 0CVE-1999-0096
https://notcve.org/view.php?id=CVE-1999-0096
10 Dec 1996 — Sendmail decode alias can be used to overwrite sensitive files. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/122&type=0&nav=sec.sba •