1999 CVE Vulnerabilities
897 CVEs published in 1999.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-0477 | — | — | 5.3% | Dec 25, 1999 | The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via... |
| CVE-1999-0455 | — | — | 5.5% | Dec 25, 1999 | The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server ... |
| CVE-1999-0892 | — | — | 0.4% | Dec 24, 1999 | Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the f... |
| CVE-1999-1109 | — | — | 7.2% | Dec 22, 1999 | Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of ETRN commands then di... |
| CVE-1999-1066 | — | — | 1.3% | Dec 22, 1999 | Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote at... |
| CVE-1999-1497 | — | — | 1.4% | Dec 21, 1999 | Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to rea... |
| CVE-1999-0997 | — | — | 6.2% | Dec 20, 1999 | wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted ... |
| CVE-1999-1005 | — | — | 7.9% | Dec 19, 1999 | Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) a... |
| CVE-1999-1006 | — | — | 1.5% | Dec 19, 1999 | Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP paramet... |
| CVE-1999-1004 | — | — | 2.0% | Dec 16, 1999 | Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. |
| CVE-1999-1000 | — | — | 2.0% | Dec 16, 1999 | The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics. |
| CVE-1999-0998 | — | — | 1.3% | Dec 16, 1999 | Cisco Cache Engine allows an attacker to replace content in the cache. |
| CVE-1999-1001 | — | — | 1.4% | Dec 16, 1999 | Cisco Cache Engine allows a remote attacker to gain access via a null username and password. |
| CVE-1999-0995 | — | — | 21.8% | Dec 16, 1999 | Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments t... |
| CVE-1999-0994 | — | — | 7.2% | Dec 16, 1999 | Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to cra... |
| CVE-1999-0996 | — | — | 7.7% | Dec 15, 1999 | Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. |
| CVE-1999-0935 | — | — | 9.8% | Dec 15, 1999 | classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI f... |
| CVE-1999-0934 | — | — | 6.8% | Dec 15, 1999 | classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters. |
| CVE-1999-1010 | — | — | 1.4% | Dec 14, 1999 | An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy. |
| CVE-1999-0993 | — | — | 6.9% | Dec 13, 1999 | Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cac... |
| CVE-1999-1003 | — | — | 1.9% | Dec 13, 1999 | War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections. |
| CVE-1999-1007 | — | — | 3.5% | Dec 13, 1999 | Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo fi... |
| CVE-1999-1009 | — | — | 1.5% | Dec 12, 1999 | The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to ... |
| CVE-1999-0289 | — | — | 3.6% | Dec 12, 1999 | The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL. |
| CVE-1999-0977 | — | — | 12.6% | Dec 10, 1999 | Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. |
Check if your code is affected by 1999 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now