1999 CVE Vulnerabilities
897 CVEs published in 1999.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-0390 | — | — | 0.4% | Jan 4, 1999 | Buffer overflow in Dosemu Slang library in Linux. |
| CVE-1999-0389 | — | — | 0.4% | Jan 3, 1999 | Buffer overflow in the bootp server in the Debian Linux netstd package. |
| CVE-1999-0914 | — | — | 1.1% | Jan 3, 1999 | Buffer overflow in the FTP client in the Debian GNU/Linux netstd package. |
| CVE-1999-1422 | — | — | 0.3% | Jan 2, 1999 | The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the ... |
| CVE-1999-0402 | — | — | 1.5% | Jan 2, 1999 | wget 1.5.3 follows symlinks to change permissions of the target file instead of the symlink itself. |
| CVE-1999-1170 | — | — | 3.7% | Jan 2, 1999 | IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" r... |
| CVE-1999-0361 | — | — | 1.6% | Jan 1, 1999 | NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logg... |
| CVE-1999-0355 | — | — | 1.8% | Jan 1, 1999 | Local or remote users can force ControlIT 4.5 to reboot or force a user to log out, resulting in a denial of service. |
| CVE-1999-0286 | — | — | 2.0% | Jan 1, 1999 | In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages. |
| CVE-1999-0285 | — | — | 6.6% | Jan 1, 1999 | Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection. |
| CVE-1999-0283 | — | — | 8.9% | Jan 1, 1999 | The Java Web Server would allow remote users to obtain the source code for CGI programs. |
| CVE-1999-0276 | — | — | 3.1% | Jan 1, 1999 | mSQL v2.0.1 and below allows remote execution through a buffer overflow. |
| CVE-1999-0268 | — | — | 5.9% | Jan 1, 1999 | MetaInfo MetaWeb web server allows users to upload, execute, and read scripts. |
| CVE-1999-0255 | — | — | 3.0% | Jan 1, 1999 | Buffer overflow in ircd allows arbitrary command execution. |
| CVE-1999-0248 | — | — | 1.6% | Jan 1, 1999 | A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credent... |
| CVE-1999-1430 | — | — | 0.3% | Jan 1, 1999 | PIM software for Royal daVinci does not properly password-protext access to data stored in the .mdb (Microsoft Access) f... |
| CVE-1999-0364 | — | — | 5.2% | Jan 1, 1999 | Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data. |
| CVE-1999-0399 | — | — | 2.7% | Jan 1, 1999 | The DCC server command in the Mirc 5.5 client doesn't filter characters from file names properly, allowing remote attack... |
| CVE-1999-0401 | — | — | 0.3% | Jan 1, 1999 | A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files. |
| CVE-1999-0448 | — | — | 24.2% | Jan 1, 1999 | IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL... |
| CVE-1999-0452 | — | — | 1.6% | Jan 1, 1999 | A service or application has a backdoor password that was placed there by the developer. |
| CVE-1999-0453 | — | — | 1.5% | Jan 1, 1999 | An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol ... |
| CVE-1999-0454 | — | — | 2.8% | Jan 1, 1999 | A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packet... |
| CVE-1999-0465 | — | — | 2.8% | Jan 1, 1999 | Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter. |
| CVE-1999-0495 | — | — | 3.2% | Jan 1, 1999 | A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. |
Check if your code is affected by 1999 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now