Search
153,531 CVEs · Medium severity
CVEs (153,531, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 476–500 of 153,531 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-1999-1361 | MEDIUM | 6.4 | 1998-05-09 | Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed pac… | |
| CVE-1999-1367 | MEDIUM | 4.6 | 1999-05-06 | Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not use standard cache controls, which could allow users on the same system … | |
| CVE-1999-1369 | MEDIUM | 4.6 | 1999-04-14 | Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges. | |
| CVE-1999-1372 | MEDIUM | 4.6 | 1999-02-19 | Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges. | |
| CVE-1999-1373 | MEDIUM | Patched | 5.0 | 2005-01-05 | FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN scan with TCP/IP OS fingerprinting, e.g. via nmap. |
| CVE-1999-1374 | MEDIUM | 5.0 | 2005-05-02 | perlshop.cgi shopping cart program stores sensitive customer information in directories and files that are under the web root, which allows remote attackers to obtain that … | |
| CVE-1999-1375 | MEDIUM | 5.0 | 1999-02-11 | FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter. | |
| CVE-1999-1377 | MEDIUM | 5.0 | 1999-09-09 | Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter. | |
| CVE-1999-1378 | MEDIUM | 5.0 | 1999-07-19 | dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files. | |
| CVE-1999-1379 | MEDIUM | 5.0 | 1999-12-31 | DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a spoofed source address, which produces more traffic to the victim than … | |
| CVE-1999-1380 | MEDIUM | 5.1 | 1997-05-04 | Symantec Norton Utilities 2.0 for Windows 95 marks the TUNEOCX.OCX ActiveX control as safe for scripting, which allows remote attackers to execute arbitrary commands via th… | |
| CVE-1999-1383 | MEDIUM | Patched | 4.6 | 1996-09-13 | (1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (` back-tick), which can cause the comm… |
| CVE-1999-1386 | MEDIUM | Patched | 5.5 | 1999-12-31 | Perl 5.004_04 and earlier follows symbolic links when running with the -e option, which allows local users to overwrite arbitrary files via a symlink attack on the /tmp/per… |
| CVE-1999-1387 | MEDIUM | 5.0 | 1997-04-02 | Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount comma… | |
| CVE-1999-1388 | MEDIUM | 6.2 | 1994-05-13 | passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument. | |
| CVE-1999-1393 | MEDIUM | 4.6 | 1999-05-21 | Control Panel "Password Security" option for Apple Powerbooks allows attackers with physical access to the machine to bypass the security by booting it with an emergency st… | |
| CVE-1999-1398 | MEDIUM | 6.2 | 1997-05-07 | Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack. | |
| CVE-1999-1401 | MEDIUM | 4.6 | 1996-12-05 | Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook). | |
| CVE-1999-1404 | MEDIUM | 5.0 | 1998-10-02 | IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the localtracker client po… | |
| CVE-1999-1410 | MEDIUM | 6.2 | 1997-05-09 | addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attack on the printers temporary file. | |
| CVE-1999-1412 | MEDIUM | 5.0 | 1999-06-03 | A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET request… | |
| CVE-1999-1413 | MEDIUM | 4.6 | 1996-08-03 | Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite o… | |
| CVE-1999-1415 | MEDIUM | Patched | 4.6 | 1991-08-23 | Vulnerability in /usr/bin/mail in DEC ULTRIX before 4.2 allows local users to gain privileges. |
| CVE-1999-1416 | MEDIUM | 5.0 | 1998-08-23 | AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large content-length. | |
| CVE-1999-1418 | MEDIUM | 5.0 | 1999-05-01 | ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server respo… |