CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST — in English
CISA KEV catalog updated: (v2026.07.01)
The recover program in Solstice Backup allows local users to restore sensitive files.
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.
Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close the handle.
Cisco Resource Manager (CRM) 1.1 and earlier creates files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings.
Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool.
netcfg 2.16-1 in Red Hat Linux 4.2 allows users to control the Ethernet interface on reboot when an option is set, enabling local users to cause a denial of service by shutting down the interface.
A bug in Intel Pentium processor (MMX and Overdrive) allows local users to cause a denial of service (hang) in Intel-based operating systems such as Windows NT and Windows 95, via an invalid instruction.
The gzexe program in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.
The vulnerability in lquerypv on AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.
Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions GetThreadContext or SetThreadContext.
Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.
Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which could allow local users to read folders for which they do not have permission.
Cisco Resource Manager (CRM) versions 1.0 and 1.1 create world-readable log files and temporary files, which may expose sensitive information such as user IDs, passwords, and SNMP community strings to local users.
Microsoft Office 98 for Macintosh does not properly initialize the disk space used by Office 98 files, effectively inserting data from previously deleted files into the Office file. This could allow attackers to obtain sensitive information.
The vulnerability in lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack triggered after invoking lpr 1000 times.
GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard of the user who has locked the workstation by pasting (CTRL-V) the contents into the username prompt.
Directory traversal vulnerability in wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via '..' sequences in the image parameter.
In Sun Microsystems Solaris 8 and 9, and certain earlier releases, the /usr/ucb/ps command allows local users to view the environment variables and values of arbitrary processes via the -e option.
The nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
FTPPro allows local users to read sensitive information, which is stored in plain text.

