[CLOSE] OSVDB ID : 8745 - Disclosed: 1990-01-29

Description:

(Description Provided by CVE) : Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin.

[CLOSE] OSVDB ID : 57724 - Disclosed: 1990-01-25

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 124 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A component service related to NIS is running."

[CLOSE] OSVDB ID : 123 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : The netstat service is running, which provides sensitive information to remote attackers.

[CLOSE] OSVDB ID : 207 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.

[CLOSE] OSVDB ID : 70 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : A service or application has a backdoor password that was placed there by the developer.

[CLOSE] OSVDB ID : 193 - Disclosed: 1990-01-01

Description:

This host is running the 'rsh' service. This service provides the ability to run arbitrary commands on the host using normal 'r' utility authentication. Usernames and passwords are passed across the network in plaintext. An attacker can possibly sniff usernames and passwords and gain access to this host. This vulnerability may be a false positive on hosts protected by certain application-level firewalls or the firewalls themselves such as a Raptor Firewall or TIS Firewall Toolkit. On these systems a connection is not refused, but is established and then immediately closed.

[CLOSE] OSVDB ID : 286 - Disclosed: 1990-01-01

Description:

Devices without proper physical security may allow a malicious user to bypass authentication or even lead to an unauthorized information disclosure. The issue may be triggered in a variety of different ways and typically depends on the specific device. It is possible that the flaw will result in a loss of integrity.

[CLOSE] OSVDB ID : 309 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.

[CLOSE] OSVDB ID : 492 - Disclosed: 1990-01-01

Description:

DNS contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the host's DNS name server allows zone transfers to replicate zone information between master and slave DNS servers. If zone transfers have not been restricted to authorized slave servers only, a remote attacker could disclose sensitive network information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 529 - Disclosed: 1990-01-01

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 856 - Disclosed: 1990-01-01

Description:

(Description Provided by CVE) : A version of rusers is running that exposes valid user information to any entity on the network.

[CLOSE] OSVDB ID : 5684 - Disclosed: 1990-01-01

Description:

Iniquity BBS contains a flaw that may allow an unprivileged user to download arbitrary files. The issue is due to the Sysop line chat allowing system commands to be executed from either side of the chat. If a user initiates a file transfer from the chat, they may download any file on the host system.

[CLOSE] OSVDB ID : 7759 - Disclosed: 1990-01-01

Description:

By default, Major BBS running the Mutant Link module installs with a default password. The "ML" account has a password of "!@*&#@&AY" which is publicly known and documented. This allows attackers to trivially access the program or system.