Search
127,949 CVEs · High severity
CVEs (127,949, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 251–275 of 127,949 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-0412 | HIGH | 7.5 | 1999-02-19 | In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension. | |
| CVE-1999-0413 | HIGH | 7.2 | 1999-03-01 | A buffer overflow in the SGI X server allows local users to gain root access through the X server font path. | |
| CVE-1999-0415 | HIGH | Patched | 7.5 | 1999-03-11 | The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration. |
| CVE-1999-0420 | HIGH | 7.2 | 1999-03-17 | umapfs allows local users to gain root privileges by changing their uid through a malicious mount_umap program. | |
| CVE-1999-0421 | HIGH | 7.2 | 1999-03-17 | During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password. | |
| CVE-1999-0427 | HIGH | 7.5 | 2000-05-01 | Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long file names. | |
| CVE-1999-0428 | HIGH | Patched | 7.5 | 1999-03-22 | OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and bypass access controls. |
| CVE-1999-0429 | HIGH | 7.5 | 1999-03-01 | The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference. | |
| CVE-1999-0434 | HIGH | 7.5 | 1999-03-30 | XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a … | |
| CVE-1999-0435 | HIGH | 7.2 | 1999-03-01 | MC/ServiceGuard and MC/LockManager in HP-UX allows local users to gain privileges through SAM. | |
| CVE-1999-0439 | HIGH | Patched | 7.5 | 1999-04-05 | Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file. |
| CVE-1999-0440 | HIGH | 7.5 | 1999-03-01 | The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. | |
| CVE-1999-0443 | HIGH | 10.0 | 1999-04-01 | Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password. | |
| CVE-1999-0449 | HIGH | 7.8 | 1999-01-26 | The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (2) query.asp, or (3) s… | |
| CVE-1999-0450 | HIGH | 7.5 | 1999-01-26 | In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe). | |
| CVE-1999-0452 | HIGH | 10.0 | 1999-01-01 | A service or application has a backdoor password that was placed there by the developer. | |
| CVE-1999-0454 | HIGH | 10.0 | 1999-01-01 | A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso. | |
| CVE-1999-0455 | HIGH | 7.5 | 1999-12-25 | The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to … | |
| CVE-1999-0457 | HIGH | 7.2 | 1999-01-17 | Linux ftpwatch program allows local users to gain root privileges. | |
| CVE-1999-0461 | HIGH | 10.0 | 1999-01-28 | Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address. | |
| CVE-1999-0462 | HIGH | 7.2 | 1999-03-17 | suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file syste… | |
| CVE-1999-0465 | HIGH | 10.0 | 1999-01-01 | Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter. | |
| CVE-1999-0466 | HIGH | 7.2 | 1999-04-21 | The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. | |
| CVE-1999-0468 | HIGH | 8.2 | 1999-04-09 | Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component. | |
| CVE-1999-0476 | HIGH | 7.2 | 1999-03-01 | A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user. |