Vuldb Updates

A vulnerability identified as critical has been detected in Microsoft Hotmail. The impacted element is an unknown function of the component Javascript. Performing a manipulation of the argument style results in basic cross site scripting. This vulnerability is known as CVE-1999-0750. Remote exploitation of the attack is possible. Furthermore, an exploit is available. This vulnerability is considered historic because of its background and reception. It is recommended that the affected component be replaced with an alternative.

A vulnerability classified as critical was found in University of Kansas Lynx. Affected by this issue is some unknown functionality of the component Command Line Argument Handler. Such manipulation leads to improper privilege management. This vulnerability is referenced as CVE-1999-0817. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, was found in Inline Internet Systems iHTML Merchant up to 2.0. This vulnerability affects unknown code of the component Feedback Form. Executing a manipulation can lead to improper privilege management. This vulnerability is tracked as CVE-1999-0890. The attack can be launched remotely. No exploit exists. You should upgrade the affected component.

A vulnerability has been found in Steven J. Merrifield Soundcard Cw 1.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to improper privilege management. This vulnerability is listed as CVE-1999-0907. The attack must be carried out locally. There is no available exploit.

A vulnerability categorized as critical has been discovered in Microsoft Windows 98/NT 4.0. This impacts an unknown function of the component IP Source Routing Handler. Executing a manipulation can lead to improper access controls. This vulnerability appears as CVE-1999-0909. The attack may be performed from remote. There is no available exploit. Applying a patch is advised to resolve this issue.

A vulnerability described as critical has been identified in Microsoft IIS 4.0. This affects an unknown part of the component File Handler. Such manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-1999-0777. The attack can be launched remotely. No exploit exists. It is advisable to implement a patch to correct this issue.

A vulnerability, which was classified as problematic, has been found in IBM AIX 4.1.5/4.2.1. Impacted is an unknown function of the component named-xfer. The manipulation of the argument -f leads to improper privilege management. This vulnerability is referenced as CVE-1999-1013. The attack can only be performed from a local environment. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in KVIrc IRC Client 0.9.0 and classified as problematic. This affects an unknown function of the component Listen Request Option. Such manipulation as part of DCC GET Request leads to path traversal. This vulnerability is listed as CVE-1999-1351. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in Knox Software Arkeia 4.0/4.1. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the component nlserverd. The manipulation leads to denial of service. This vulnerability is documented as CVE-1999-0788. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Mutt. Affected by this issue is some unknown functionality of the component MIME Message Handler. The manipulation results in memory corruption. This vulnerability is reported as CVE-1999-0940. The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Vixie Cron 3.0 Pl1 and classified as problematic. The impacted element is an unknown function of the component Crontab File Handler. The manipulation of the argument MAILTO as part of Environment Variable results in memory corruption. This vulnerability is reported as CVE-1999-0872. The attack requires a local approach. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability was found in Microsoft Internet Explorer 5.0. It has been classified as problematic. This affects an unknown function of the component URL History Handler. This manipulation causes information disclosure. This vulnerability appears as CVE-1999-1235. The attack requires local access. In addition, an exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Debian Linux 2.1/2.2. It has been declared as problematic. This impacts an unknown function of the component epic/epic4 Client. Such manipulation as part of Long String leads to denial of service. This vulnerability is traded as CVE-1999-0939. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability identified as problematic has been detected in Softarc FirstClass Internet Server 5.506. Affected by this issue is some unknown functionality of the file home.fc/network.fc. The manipulation leads to cleartext storage of sensitive information. This vulnerability is uniquely identified as CVE-1999-1354. Local access is required to approach this attack. No exploit exists. You should upgrade the affected component.

A vulnerability labeled as critical has been found in 3com SuperStack II Hub 2.10. This affects an unknown part of the component SNMP. The manipulation results in improper privilege management. This vulnerability was named CVE-1999-1513. The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.

A vulnerability has been found in Cisco IOS 11.2.8 and classified as critical. This impacts an unknown function of the component VLAN 802.1q Handler. This manipulation causes improper privilege management. This vulnerability is registered as CVE-1999-1129. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.

A vulnerability was found in Compaq SmartStart 4.50 on Win NT. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component Integration Maintenance Utility. Performing a manipulation results in improper privilege management. This vulnerability is reported as CVE-1999-1356. The attack requires a local approach. No exploit exists. Upgrading the affected component is recommended.

A vulnerability was found in TenFour TFS Gateway SMTP 3.2. It has been declared as critical. Affected by this issue is some unknown functionality of the component Mail From Handler. Executing a manipulation as part of Long Argument can lead to memory corruption. This vulnerability appears as CVE-1999-1516. The attack may be performed from remote. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in FreeBSD 3.2. It has been rated as problematic. This affects an unknown part of the component NFS v3 Handler. The manipulation leads to denial of service. This vulnerability is traded as CVE-1999-1564. An attack has to be approached locally. There is no exploit available. Upgrading the affected component is advised.

A vulnerability labeled as problematic has been found in gFTP Ftp Client up to 2.0.6a. Impacted is an unknown function of the component Password Handler. Such manipulation leads to cleartext storage of sensitive information. This vulnerability is uniquely identified as CVE-1999-1562. Local access is required to approach this attack. No exploit exists. The affected component should be upgraded.