1999 CVE Vulnerabilities
897 CVEs published in 1999.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-1497 | — | — | 1.4% | Dec 21, 1999 | Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to rea... |
| CVE-1999-0997 | — | — | 6.2% | Dec 20, 1999 | wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted ... |
| CVE-1999-1006 | — | — | 1.5% | Dec 19, 1999 | Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP paramet... |
| CVE-1999-1005 | — | — | 7.9% | Dec 19, 1999 | Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) a... |
| CVE-1999-1004 | — | — | 2.0% | Dec 16, 1999 | Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command. |
| CVE-1999-0994 | — | — | 7.2% | Dec 16, 1999 | Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to cra... |
| CVE-1999-0995 | — | — | 21.8% | Dec 16, 1999 | Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments t... |
| CVE-1999-1000 | — | — | 2.0% | Dec 16, 1999 | The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics. |
| CVE-1999-1001 | — | — | 1.4% | Dec 16, 1999 | Cisco Cache Engine allows a remote attacker to gain access via a null username and password. |
| CVE-1999-0998 | — | — | 1.3% | Dec 16, 1999 | Cisco Cache Engine allows an attacker to replace content in the cache. |
| CVE-1999-0934 | — | — | 6.8% | Dec 15, 1999 | classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters. |
| CVE-1999-0996 | — | — | 7.7% | Dec 15, 1999 | Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request. |
| CVE-1999-0935 | — | — | 9.8% | Dec 15, 1999 | classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI f... |
| CVE-1999-1010 | — | — | 1.4% | Dec 14, 1999 | An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy. |
| CVE-1999-0993 | — | — | 6.9% | Dec 13, 1999 | Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cac... |
| CVE-1999-1003 | — | — | 1.9% | Dec 13, 1999 | War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections. |
| CVE-1999-1007 | — | — | 3.5% | Dec 13, 1999 | Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo fi... |
| CVE-1999-1009 | — | — | 1.5% | Dec 12, 1999 | The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to ... |
| CVE-1999-0289 | — | — | 3.6% | Dec 12, 1999 | The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL. |
| CVE-1999-0977 | — | — | 12.6% | Dec 10, 1999 | Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. |
| CVE-1999-0975 | — | — | 2.7% | Dec 10, 1999 | The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafi... |
| CVE-1999-0974 | — | — | 3.2% | Dec 9, 1999 | Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquota... |
| CVE-1999-0978 | — | — | 1.8% | Dec 9, 1999 | htdig allows remote attackers to execute commands via filenames with shell metacharacters. |
| CVE-1999-0972 | — | — | 2.1% | Dec 9, 1999 | Buffer overflow in Xshipwars xsw program. |
| CVE-1999-0981 | — | — | 13.1% | Dec 8, 1999 | Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-si... |
Check if your code is affected by 1999 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now