CVE-1999-0141
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet. Date published : 1999-09-29 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/134
Monthly Archive: September 1999
CVE-1999-0139
Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. Date published : 1999-09-29 http://www.osvdb.org/8205
CVE-1999-0138
The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access. Date published : 1999-09-29
CVE-1999-0137
The dip program on many Linux systems allows local users to gain root access via a buffer overflow. Date published : 1999-09-29
CVE-1999-0136
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access. Date published : 1999-09-29
CVE-1999-0135
admintool in Solaris allows a local user to write to arbitrary files and gain root access. Date published : 1999-09-29
CVE-1999-0134
vold in Solaris 2.x allows local users to gain root access. Date published : 1999-09-29
CVE-1999-0133
fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access. Date published : 1999-09-29
CVE-1999-0132
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access. Date published : 1999-09-29 http://www.cert.org/advisories/CA-1996-19.html http://www.osvdb.org/11723
CVE-1999-0131
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. Date published : 1999-09-29 http://www.securityfocus.com/bid/717
CVE-1999-0130
Local users can start Sendmail in daemon mode and gain root privileges. Date published : 1999-09-29 http://www.securityfocus.com/bid/716
CVE-1999-0129
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. Date published : 1999-09-29
CVE-1999-0128
Oversized ICMP ping packets can result in a denial of service, aka Ping o’ Death. Date published : 1999-09-29
CVE-1999-0126
SGI IRIX buffer overflow in xterm and Xaw allows root access. Date published : 1999-09-29 http://www.ciac.org/ciac/bulletins/j-010.shtml