1999 CVE Vulnerabilities
897 CVEs published in 1999.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-0448 | — | — | 24.2% | Jan 1, 1999 | IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL... |
| CVE-1999-0654 | — | — | 1.9% | Jan 1, 1999 | The OS/2 or POSIX subsystem in NT is enabled. |
| CVE-1999-0231 | — | — | 1.4% | Jan 1, 1999 | Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of s... |
| CVE-1999-0452 | — | — | 1.6% | Jan 1, 1999 | A service or application has a backdoor password that was placed there by the developer. |
| CVE-1999-0453 | — | — | 1.5% | Jan 1, 1999 | An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol ... |
| CVE-1999-0454 | — | — | 2.8% | Jan 1, 1999 | A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packet... |
| CVE-1999-0240 | — | — | 1.3% | Jan 1, 1999 | Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy. |
| CVE-1999-0465 | — | — | 2.8% | Jan 1, 1999 | Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter. |
| CVE-1999-0243 | — | — | 1.6% | Jan 1, 1999 | Linux cfingerd could be exploited to gain root access. |
| CVE-1999-0495 | — | — | 3.2% | Jan 1, 1999 | A remote attacker can gain access to a file system using .. (dot dot) when accessing SMB shares. |
| CVE-1999-0497 | — | — | 7.0% | Jan 1, 1999 | Anonymous FTP is enabled. |
| CVE-1999-0665 | — | — | 1.9% | Jan 1, 1999 | An application-critical Windows NT registry key has an inappropriate value. |
| CVE-1999-0394 | — | — | 1.6% | Jan 1, 1999 | DPEC Online Courseware allows an attacker to change another user's password without knowing the original password. |
| CVE-1999-0655 | — | — | — | Jan 1, 1999 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific ... |
| CVE-1999-0512 | — | — | 12.4% | Jan 1, 1999 | A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers. |
| CVE-1999-0515 | — | — | 1.9% | Jan 1, 1999 | An unrestricted remote trust relationship for Unix systems has been set up, e.g. by using a + sign in /etc/hosts.equiv. |
| CVE-1999-0520 | — | — | 1.5% | Jan 1, 1999 | A system-critical NETBIOS/SMB share has inappropriate access control. |
| CVE-1999-0554 | — | — | 11.1% | Jan 1, 1999 | NFS exports system-critical data to the world, e.g. / or a password file. |
| CVE-1999-0527 | — | — | 2.0% | Jan 1, 1999 | The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory... |
| CVE-1999-0528 | — | — | 1.5% | Jan 1, 1999 | A router or firewall forwards external packets that claim to come from inside the network that the router/firewall is in... |
| CVE-1999-0529 | — | — | 1.5% | Jan 1, 1999 | A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x... |
| CVE-1999-0530 | — | — | 1.9% | Jan 1, 1999 | A system is operating in "promiscuous" mode which allows it to perform packet sniffing. |
| CVE-1999-0547 | — | — | 2.0% | Jan 1, 1999 | An SSH server allows authentication through the .rhosts file. |
| CVE-1999-0564 | — | — | 1.8% | Jan 1, 1999 | An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to beco... |
| CVE-1999-0565 | — | — | 1.9% | Jan 1, 1999 | A Sendmail alias allows input to be piped to a program. |
Check if your code is affected by 1999 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now