CVE Browser

12,623 vulnerabilities across 16 vendors

Showing 1–50 of 12,623 CVEs

CVE ID	Vendor	Severity	CVSS	EPSS	Description	Published ▲	Modified
CVE-1999-0233	Microsoft	critical	10.0	30.8%	IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.	Feb 25, 1996	Apr 16, 2026
CVE-1999-0067	Apache	critical	10.0	90.0%	phf CGI program allows remote command execution through shell metacharacters.	Mar 20, 1996	Apr 16, 2026
CVE-1999-0070	Apache	medium	5.0	85.2%	test-cgi program allows an attacker to list files on the server.	Apr 1, 1996	Apr 16, 2026
CVE-1999-0045	Apache	high	7.5	32.8%	List of arbitrary files on Web host via nph-test-cgi script.	Dec 10, 1996	Apr 16, 2026
CVE-1999-0236	Apache	high	7.5	17.6%	ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.	Jan 1, 1997	Apr 16, 2026
CVE-1999-0519	Microsoft	high	7.5	11.5%	A NETBIOS/SMB share password is the default, null, or missing.	Jan 1, 1997	Apr 16, 2026
CVE-1999-0253	Microsoft	high	7.5	3.0%	IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP progra…	Jan 1, 1997	Apr 16, 2026
CVE-1999-1128	Microsoft	medium	5.1	6.1%	Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands…	Mar 1, 1997	Apr 16, 2026
CVE-1999-0280	Microsoft	high	7.5	2.8%	Remote command execution in Microsoft Internet Explorer using .lnk and .url files.	Apr 1, 1997	Apr 16, 2026
CVE-1999-0281	Microsoft	medium	5.0	6.9%	Denial of service in IIS using long URLs.	Jun 1, 1997	Apr 16, 2026
CVE-1999-0031	Microsoft	low	2.6	2.9%	JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers …	Jul 8, 1997	Apr 16, 2026
CVE-1999-1446	Microsoft	low	2.1	0.8%	Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located i…	Aug 5, 1997	Apr 16, 2026
CVE-1999-0071	Apache	high	7.5	7.3%	Apache httpd cookie buffer overflow for versions 1.1.1 and earlier.	Sep 1, 1997	Apr 16, 2026
CVE-1999-0191	Microsoft	medium	6.4	62.0%	IIS newdsn.exe CGI script allows remote users to overwrite files.	Sep 1, 1997	Apr 16, 2026
CVE-1999-0294	Microsoft	medium	5.0	11.4%	All records in a WINS database can be deleted through SNMP for a denial of service.	Oct 1, 1997	Apr 16, 2026
CVE-1999-0967	Microsoft	critical	10.0	17.9%	Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer…	Nov 1, 1997	Apr 16, 2026
CVE-1999-0016	Microsoft	medium	5.0	81.0%	Land IP denial of service.	Dec 1, 1997	Apr 16, 2026
CVE-1999-0004	HPE	medium	5.0	3.4%	MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.	Dec 16, 1997	Apr 16, 2026
CVE-1999-0107	Apache	medium	5.0	35.6%	Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service wi…	Dec 30, 1997	Apr 16, 2026
CVE-1999-0331	Microsoft	high	7.5	3.2%	Buffer overflow in Internet Explorer 4.0(1).	Jan 1, 1998	Apr 16, 2026
CVE-1999-0284	Microsoft	high	7.5	3.3%	Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer over…	Jan 1, 1998	Apr 16, 2026
CVE-1999-0012	Microsoft	high	7.0	0.7%	Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for fi…	Feb 6, 1998	Apr 16, 2026
CVE-1999-0551	HPE	medium	4.6	0.1%	HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requ…	Apr 1, 1998	Apr 16, 2026
CVE-1999-0537	Microsoft	high	7.5	0.9%	A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of…	Apr 1, 1998	Apr 16, 2026
CVE-1999-1204	Check Point	high	7.5	0.6%	Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time)…	May 11, 1998	Apr 16, 2026
CVE-1999-0278	Microsoft	medium	5.0	76.4%	In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.	Jun 1, 1998	Apr 16, 2026
CVE-1999-0007	HPE	medium	5.0	7.5%	Information from SSL-encrypted sessions via PKCS #1.	Jun 26, 1998	Apr 16, 2026
CVE-1999-1556	Microsoft	high	7.2	0.7%	Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account a…	Jun 29, 1998	Apr 16, 2026
CVE-1999-1433	HPE	high	7.2	0.6%	HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a…	Jul 15, 1998	Apr 16, 2026
CVE-1999-1582	Cisco	high	7.5	2.3%	By design, the "established" command on the Cisco PIX firewall allows connections from one host to a…	Jul 15, 1998	Apr 16, 2026
CVE-1999-1447	Microsoft	medium	5.0	15.3%	Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code tha…	Jul 28, 1998	Apr 16, 2026
CVE-1999-1199	Apache	critical	10.0	5.1%	Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource e…	Aug 7, 1998	Apr 16, 2026
CVE-1999-0871	Microsoft	low	2.6	11.2%	Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, …	Sep 4, 1998	Apr 16, 2026
CVE-1999-0870	Microsoft	low	2.6	7.2%	Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into t…	Oct 1, 1998	Apr 16, 2026
CVE-1999-1322	Microsoft	medium	4.6	0.6%	The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, …	Nov 12, 1998	Apr 16, 2026
CVE-1999-0869	Microsoft	low	2.6	18.7%	Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of a…	Dec 1, 1998	Apr 16, 2026
CVE-1999-0385	Microsoft	critical	10.0	9.0%	The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduc…	Dec 1, 1998	Apr 16, 2026
CVE-1999-0332	Microsoft	high	7.5	3.8%	Buffer overflow in NetMeeting allows denial of service and remote command execution.	Dec 1, 1998	Apr 16, 2026
CVE-1999-0448	Microsoft	medium	5.0	61.9%	IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote atta…	Jan 1, 1999	Apr 16, 2026
CVE-1999-0384	Microsoft	medium	4.6	0.3%	The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read …	Jan 1, 1999	Apr 16, 2026
CVE-1999-0364	Microsoft	critical	10.0	11.7%	Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to dat…	Jan 1, 1999	Apr 16, 2026
CVE-2000-0005	HPE	high	7.2	0.1%	HP-UX aserver program allows local users to gain privileges via a symlink attack.	Jan 2, 1999	Apr 16, 2026
CVE-1999-0391	Microsoft	high	7.5	4.5%	The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowi…	Jan 5, 1999	Apr 16, 2026
CVE-1999-1538	Microsoft	low	2.1	50.3%	When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does…	Jan 14, 1999	Apr 16, 2026
CVE-1999-1376	Microsoft	critical	10.0	47.3%	Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers t…	Jan 14, 1999	Apr 16, 2026
CVE-1999-0678	Apache	medium	5.0	20.4%	A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows …	Jan 17, 1999	Apr 16, 2026
CVE-1999-1544	Microsoft	medium	5.0	6.8%	Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attacke…	Jan 24, 1999	Apr 16, 2026
CVE-1999-0450	Microsoft	high	7.5	25.3%	In IIS, an attacker could determine a real path using a request for a non-existent URL that would be…	Jan 26, 1999	Apr 16, 2026
CVE-1999-0449	Microsoft	high	7.8	36.2%	The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption…	Jan 26, 1999	Apr 16, 2026
CVE-1999-0349	Microsoft	high	7.5	11.2%	A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of…	Jan 27, 1999	Apr 16, 2026

1 2 3 4 5 6 7 8 9 10 Next →

CVE Browser

Bulk Vulnerability Analysis

Bulk Vulnerability Reports