
CVE-1999-0687
https://notcve.org/view.php?id=CVE-1999-0687
13 Sep 1999 — The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 •

CVE-1999-0691 – DIGITAL UNIX 4.0 d/e/f / AIX 4.3.2 / CDE 2.1 / IRIX 6.5.14 / Solaris 7.0 - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0691
13 Sep 1999 — Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. • https://www.exploit-db.com/exploits/19497 •

CVE-1999-1079
https://notcve.org/view.php?id=CVE-1999-1079
06 May 1999 — Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. • http://marc.info/?l=bugtraq&m=92601792420088&w=2 •

CVE-1999-1405 – IBM AIX 4.2.1 - 'snap' Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-1999-1405
17 Feb 1999 — snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. • https://www.exploit-db.com/exploits/19300 •

CVE-1999-0118 – IBM AIX 4.3 - 'infod' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0118
01 Nov 1998 — AIX infod allows local users to gain root access through an X display. • https://www.exploit-db.com/exploits/19287 •

CVE-1999-0009 – ISC BIND (Linux/BSD) - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0009
08 Apr 1998 — Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. • https://www.exploit-db.com/exploits/19111 •

CVE-1999-0010
https://notcve.org/view.php?id=CVE-1999-0010
08 Apr 1998 — Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. • ftp://patches.sgi.com/support/free/security/advisories/19980603-01-PX •

CVE-1999-0011
https://notcve.org/view.php?id=CVE-1999-0011
08 Apr 1998 — Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer. • ftp://patches.sgi.com/support/free/security/advisories/19980603-01-PX •

CVE-1999-0003 – Xi Graphics Maximum CDE 1.2.3/TriTeal TED CDE 4.3/Sun Solaris 2.5.1 - ToolTalk RPC Service Overflow
https://notcve.org/view.php?id=CVE-1999-0003
01 Apr 1998 — Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). • https://www.exploit-db.com/exploits/19102 •

CVE-1999-1486
https://notcve.org/view.php?id=CVE-1999-1486
25 Feb 1998 — sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack. • http://techsupport.services.ibm.com/aix/fixes/v4/os/bos.acct.4.3.1.0.info •