CVE-1999-0394

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0750%

EPSS Percentile17.25th

Published1999年1月1日

Last Modified2026年4月16日

Vulnerability Description

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.

No CPE configurations currently published for this record.

Buffer overflow in bootpd 2.4.3 and earlier via a long boot file location.

The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.

A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.