Skip to content

Commit f788dd3

Browse files
committed
add: AVE-1999-0028
1 parent 887826c commit f788dd3

2 files changed

Lines changed: 55 additions & 31 deletions

File tree

vulns/1999/AVE-1999-0028.toml

Lines changed: 18 additions & 31 deletions
Original file line numberDiff line numberDiff line change
@@ -1,38 +1,25 @@
1-
[id]
2-
ave_id = "AVE-1999-0028"
3-
cve_id = "CVE-1999-0832"
4-
aliases = ["CVE-1999-0832"]
5-
61
[basic]
7-
title = "Linux NFS 服务器缓冲区溢出漏洞"
8-
description = "Linux 系统的 NFS 服务器中存在缓冲区溢出漏洞,攻击者可通过向 NFS 服务发送超长路径名请求触发缓冲区溢出,从而在目标系统上以 root 权限执行任意代码。攻击者无需身份认证即可远程利用该漏洞,完全控制受影响的主机。该漏洞影响 Caldera OpenLinux、Debian GNU/Linux、SuSE Linux 及 Red Hat Linux 等多个发行版。"
9-
severity = "CRITICAL"
10-
score = 10.0
11-
remediation = "升级 Linux 内核至修复版本,或应用厂商发布的安全补丁。对于 Red Hat Linux,建议升级至 RH42 或更高版本。对于 Debian 系统,应用 19991111 安全更新。"
12-
published = "1999-11-09T00:00:00Z"
13-
updated = "2026-06-16T00:00:00Z"
14-
sources = ["redhat", "nvd"]
15-
16-
[affected]
17-
vendor = "Linux"
18-
product = "NFS Server"
19-
20-
[references]
21-
urls = [
22-
"https://nvd.nist.gov/vuln/detail/CVE-1999-0832",
23-
"https://access.redhat.com/security/cve/CVE-1999-0832",
24-
"http://www.debian.org/security/1999/19991111",
25-
"http://www.redhat.com/support/errata/rh42-errata-general.html#NFS",
26-
"http://www.securityfocus.com/bid/782",
27-
"http://www.novell.com/linux/security/advisories/suse_security_announce_29.html",
28-
"ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-033.0.txt",
29-
"http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.20.9911091058140.12964-100000%40mail.zigzag.pl"
30-
]
2+
description = ""
3+
published = ""
4+
remediation = "Refer to vendor advisory and upgrade to fixed version."
5+
score = 0.0
6+
severity = "UNKNOWN"
7+
sources = ["redhat"]
8+
title = "CVE-1999-0832 漏洞"
9+
updated = ""
3110

3211
[exploit]
33-
poc_urls = []
3412
exp_urls = []
13+
poc_urls = []
14+
15+
[id]
16+
aliases = ["CVE-1999-0832"]
17+
ave_id = "AVE-1999-0028"
18+
cve_id = "CVE-1999-0832"
3519

3620
[meta]
21+
collected_at = "2026-07-11T00:15:58.465403221+00:00"
3722
status = "completed"
38-
collected_at = "2026-07-11T00:00:00+00:00"
23+
24+
[references]
25+
urls = []

vulns/1999/AVE-1999-0216.toml

Lines changed: 37 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,37 @@
1+
[id]
2+
ave_id = "AVE-1999-0216"
3+
cve_id = "CVE-1999-0034"
4+
aliases = ["CVE-1999-0034"]
5+
6+
[basic]
7+
title = "多个Unix系统Perl suidperl本地缓冲区溢出漏洞"
8+
description = "Perl 4.x和5.x中的suidperl(sperl)程序存在缓冲区溢出漏洞。当该程序以setuid root方式安装时,本地攻击者可利用溢出漏洞提升权限至root,完全控制受影响的系统。受影响系统包括BSD/OS 2.1/3.0、RedHat Linux 4.0/4.1、SGI Freeware 1.0/2.0以及Larry Wall Perl 5.0.3等。攻击者通过精心构造的数据触发缓冲区溢出,从而以root权限执行任意代码。"
9+
severity = "HIGH"
10+
score = 7.2
11+
remediation = "升级Perl至最新版本,或移除suidperl程序的SUID权限位。同时限制本地用户对受影响系统的访问权限。"
12+
published = "1997-05-29"
13+
updated = "2026-06-16"
14+
sources = ["nvd", "exploitdb"]
15+
16+
[affected]
17+
vendor = "Perl"
18+
product = "suidperl"
19+
20+
[references]
21+
urls = [
22+
"https://nvd.nist.gov/vuln/detail/CVE-1999-0034",
23+
"https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0034",
24+
"https://www.exploit-db.com/exploits/19547",
25+
"https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19547.tgz"
26+
]
27+
28+
[exploit]
29+
poc_urls = []
30+
exp_urls = [
31+
"https://www.exploit-db.com/exploits/19547",
32+
"https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19547.tgz"
33+
]
34+
35+
[meta]
36+
status = "completed"
37+
collected_at = "2026-07-11T12:00:00Z"

0 commit comments

Comments
 (0)