NVD Vulnerability Information Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350301 4.6 MEDIUM
dec dec_openvms Vulnerabilities in DECnet/OSI for OpenVMS before 5.8 on DEC Alpha AXP and VAX/VMS systems allow local users to gain privileges or cause a denial of service. NVD-CWE-Other
CVE-1999-1315 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350302 4.6 MEDIUM
novell netware Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing. NVD-CWE-Other
CVE-1999-1320 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350303 7.5 HIGH
mit kerberos Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handl… NVD-CWE-Other
CVE-1999-1321 2008-09-6 05:19 1998-11-5 Show GitHub Exploit DB Packet Storm
350304 4.6 MEDIUM
microsoft windows_2000
windows_nt 		When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to b… NVD-CWE-Other
CVE-1999-1358 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350305 7.5 HIGH
microsoft windows_nt When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions… NVD-CWE-Other
CVE-1999-1359 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350306 2.1 LOW
microsoft windows_nt Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close … NVD-CWE-Other
CVE-1999-1360 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350307 2.1 LOW
microsoft windows_nt Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters. NVD-CWE-Other
CVE-1999-1362 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350308 2.1 LOW
microsoft windows_nt Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool. NVD-CWE-Other
CVE-1999-1363 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350309 2.1 LOW
microsoft windows_nt Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext. NVD-CWE-Other
CVE-1999-1364 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350310 5.0 MEDIUM
matt_wright download.cgi Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter. NVD-CWE-Other
CVE-1999-1377 2008-09-6 05:19 1999-09-9 Show GitHub Exploit DB Packet Storm
350311 6.2 MEDIUM
sun sunos passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument. NVD-CWE-Other
CVE-1999-1388 2008-09-6 05:19 1994-05-13 Show GitHub Exploit DB Packet Storm
350312 7.2 HIGH
debian debian_linux suidexec in suidmanager 0.18 on Debian 2.0 allows local users to gain root privileges by specifying a malicious program on the command line. NVD-CWE-Other
CVE-1999-1390 2008-09-6 05:19 1998-04-28 Show GitHub Exploit DB Packet Storm
350313 7.2 HIGH
next next Vulnerability in NeXT 1.0a and 1.0 with publicly accessible printers allows local users to gain privileges via a combination of the npd program and weak directory permissions. NVD-CWE-Other
CVE-1999-1391 2008-09-6 05:19 1990-10-3 Show GitHub Exploit DB Packet Storm
350314 7.2 HIGH
next nex
next 		Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1392 2008-09-6 05:19 1990-10-3 Show GitHub Exploit DB Packet Storm
350315 7.2 HIGH
sun sunos Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash). NVD-CWE-Other
CVE-1999-1396 2008-09-6 05:19 1992-07-21 Show GitHub Exploit DB Packet Storm
350316 4.6 MEDIUM
sgi irix Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook). NVD-CWE-Other
CVE-1999-1401 2008-09-6 05:19 1996-12-5 Show GitHub Exploit DB Packet Storm
350317 4.6 MEDIUM
digital ultrix Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges. NVD-CWE-Other
CVE-1999-1415 2008-09-6 05:19 1991-08-23 Show GitHub Exploit DB Packet Storm
350318 5.0 MEDIUM
mirabilis icq_web_front ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("4… NVD-CWE-Other
CVE-1999-1418 2008-09-6 05:19 1999-05-1 Show GitHub Exploit DB Packet Storm
350319 6.2 MEDIUM
sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table e… NVD-CWE-Other
CVE-1999-1424 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
350320 6.2 MEDIUM
sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files. NVD-CWE-Other
CVE-1999-1426 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
350321 6.2 MEDIUM
sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-1427 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
350322 6.2 MEDIUM
sun solstice_adminsuite Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges. NVD-CWE-Other
CVE-1999-1428 2008-09-6 05:19 1997-11-10 Show GitHub Exploit DB Packet Storm
350323 7.2 HIGH
sun sunos Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments. NVD-CWE-Other
CVE-1999-1438 2008-09-6 05:19 1991-02-22 Show GitHub Exploit DB Packet Storm
350324 2.1 LOW
sun sunos SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device. NVD-CWE-Other
CVE-1999-1449 2008-09-6 05:19 1997-05-19 Show GitHub Exploit DB Packet Storm
350325 7.5 HIGH
cisco ios Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enab… NVD-CWE-Other
CVE-1999-1466 2008-09-6 05:19 1992-12-10 Show GitHub Exploit DB Packet Storm
350326 7.2 HIGH
bsd bsd Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field. NVD-CWE-Other
CVE-1999-1471 2008-09-6 05:19 1989-01-1 Show GitHub Exploit DB Packet Storm
350327 4.6 MEDIUM
proftpd_project proftpd ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last com… NVD-CWE-Other
CVE-1999-1475 2008-09-6 05:19 1999-11-19 Show GitHub Exploit DB Packet Storm
350328 1.2 LOW
ibm aix (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. NVD-CWE-Other
CVE-1999-1480 2008-09-6 05:19 1998-06-11 Show GitHub Exploit DB Packet Storm
350329 4.6 MEDIUM
svgalib svgalib Buffer overflow in zgv in svgalib 1.2.10 and earlier allows local users to execute arbitrary code via a long HOME environment variable. NVD-CWE-Other
CVE-1999-1483 2008-09-6 05:19 1997-06-19 Show GitHub Exploit DB Packet Storm
350330 7.2 HIGH
ibm aix Vulnerability in digest in AIX 4.3 allows printq users to gain root privileges by creating and/or modifing any file on the system. NVD-CWE-Other
CVE-1999-1487 2008-09-6 05:19 1998-01-21 Show GitHub Exploit DB Packet Storm
350331 5.0 MEDIUM
ibm system_data_repository sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without authentication. NVD-CWE-Other
CVE-1999-1488 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350332 7.2 HIGH
slackware slackware_linux Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument. NVD-CWE-Other
CVE-1999-1489 2008-09-6 05:19 1997-03-4 Show GitHub Exploit DB Packet Storm
350333 7.2 HIGH
ipswitch imail Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts. NVD-CWE-Other
CVE-1999-1497 2008-09-6 05:19 1999-12-21 Show GitHub Exploit DB Packet Storm
350334 3.6 LOW
slackware slackware_linux Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file. NVD-CWE-Other
CVE-1999-1498 2008-09-6 05:19 1998-04-6 Show GitHub Exploit DB Packet Storm
350335 2.1 LOW
isc bind named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used. NVD-CWE-Other
CVE-1999-1499 2008-09-6 05:19 1998-04-10 Show GitHub Exploit DB Packet Storm
350336 5.0 MEDIUM
nfr nfr Network Flight Recorder (NFR) 1.5 and 1.6 allows remote attackers to cause a denial of service in nfrd (crash) via a TCP packet with a null header and data field. NVD-CWE-Other
CVE-1999-1503 2008-09-6 05:19 1998-04-8 Show GitHub Exploit DB Packet Storm
350337 5.0 MEDIUM
stalker stalker_internet_mail_server Stalker Internet Mail Server 1.6 allows a remote attacker to cause a denial of service (crash) via a long HELO command. NVD-CWE-Other
CVE-1999-1504 2008-09-6 05:19 1998-04-8 Show GitHub Exploit DB Packet Storm
350338 7.5 HIGH
sun sunos Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin. NVD-CWE-Other
CVE-1999-1506 2008-09-6 05:19 1990-01-29 Show GitHub Exploit DB Packet Storm
350339 2.1 LOW
sgi irix /usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users. NVD-CWE-Other
CVE-1999-1554 2008-09-6 05:19 1990-10-31 Show GitHub Exploit DB Packet Storm
350340 7.5 HIGH
digital digital_openvms
digital_openvms_axp 		Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when external authentication is enabled. NVD-CWE-Other
CVE-1999-1558 2008-09-6 05:19 1998-07-16 Show GitHub Exploit DB Packet Storm
350341 7.2 HIGH
nullsoft shoutcast_server Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server. NVD-CWE-Other
CVE-1999-1561 2008-09-6 05:19 1999-08-20 Show GitHub Exploit DB Packet Storm
350342 4.6 MEDIUM
gftp ftp_client gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file. NVD-CWE-Other
CVE-1999-1562 2008-09-6 05:19 1999-09-5 Show GitHub Exploit DB Packet Storm
350343 5.0 MEDIUM
nachuatec d435
d445 		Nachuatec D435 and D445 printer allows remote attackers to cause a denial of service via ICMP redirect storm. NVD-CWE-Other
CVE-1999-1563 2008-09-6 05:19 2000-10-14 Show GitHub Exploit DB Packet Storm
350344 2.1 LOW
freebsd freebsd FreeBSD 3.2 and possibly other versions allows a local user to cause a denial of service (panic) with a large number accesses of an NFS v3 mounted directory from a large number of processes. NVD-CWE-Other
CVE-1999-1564 2008-09-6 05:19 1999-09-2 Show GitHub Exploit DB Packet Storm
350345 4.6 MEDIUM
earl_hood
debian 		man2html
debian_linux 		Man2html 2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NVD-CWE-Other
CVE-1999-1565 2008-09-6 05:19 1999-08-20 Show GitHub Exploit DB Packet Storm
350346 5.0 MEDIUM
intel iparty Buffer overflow in iParty server 1.2 and earlier allows remote attackers to cause a denial of service (crash) by connecting to default port 6004 and sending repeated extended characters. NVD-CWE-Other
CVE-1999-1566 2008-09-6 05:19 1999-05-8 Show GitHub Exploit DB Packet Storm
350347 7.2 HIGH
sendmail
sun 		sendmail
sunos 		SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passin… NVD-CWE-Other
CVE-1999-1580 2008-09-6 05:19 1995-08-23 Show GitHub Exploit DB Packet Storm
350348 10.0 HIGH
sun openwindows
sunos 		Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root pr… NVD-CWE-Other
CVE-1999-1584 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350349 3.5 LOW
wwwcount wwwcount Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequences in the image parameter, a different vulnerabili… NVD-CWE-Other
CVE-1999-1590 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm
350350 7.5 HIGH
microsoft internet_information_server
visual_interdev 		Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote atta… NVD-CWE-Other
CVE-1999-1591 2008-09-6 05:19 1999-12-31 Show GitHub Exploit DB Packet Storm