CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST — in English
CISA KEV catalog updated: (v2026.07.01)
CVE-1999-0144 vulnerability affects Qmail and allows for a denial of service attack by specifying a large number of recipients using the RCPT command.
SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.
In Solaris 2.x, SunOS 4.x, and other BSD-based operating systems prior to version 4.4, access permissions for UNIX domain sockets are ignored. This could allow local users to connect to the socket and potentially disrupt or control the operations of the program using that socket.
Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost.
Finger redirection allows the use of 'finger bombs', which can lead to unauthorized access or disruption of system operations.
A version of the finger service is running, exposing valid user information to any entity on the network.
The finger service allows recursive searches using a long string of @ symbols.
IP traceroute is accessible from arbitrary hosts, which may lead to unauthorized tracking of network paths.
A version of rusers is running that exposes valid user information to any entity on the network.
CVE-1999-0171 vulnerability involves a denial of service (DoS) attack on the syslog system by sending a large number of superfluous messages.
Vulnerability in direct audio user space code on HP-UX 10.20 and 10.10 allows local users to cause a denial of service.
The vulnerability in dxchpwd in Digital Unix (OSF/1) 3.x allows local users to modify arbitrary files via a symlink attack on the dxchpwd.log file.
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.
The fm_fls license server for Adobe Framemaker allows local users to overwrite arbitrary files, potentially leading to root access.
The cpio program on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems uses a 0 umask when creating files with the -O (archive) or -F options, resulting in files being created with mode 0666.
The nettune program in HP-UX 10.01 and 10.00 is installed with setuid root permissions, allowing local users to modify critical networking configuration information, leading to denial of service.
Vulnerability in the union file system in FreeBSD 2.2 and earlier, and possibly other operating systems, allows local users to cause a denial of service (system reload) via a series of certain mount_union commands.
pcnfsd (also known as rpc.pcnfsd) allows local users to change file permissions or execute arbitrary commands through arguments in the RPC call.
The Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet.
Race condition in the Linux mailx command allows local users to read user files.

