| | CVE-1999-0725 |  Microsoft | high | 7.1 | 32.2%
| | When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker… | Aug 19, 1999 | Apr 16, 2026 |
| | CVE-2000-1206 |  Apache | medium | 5.0 | 3.1%
| | Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewr… | Aug 20, 1999 | Apr 16, 2026 |
| | CVE-2000-0325 | Microsoft | high | 7.2 | 7.0%
| | The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka t… | Aug 20, 1999 | Apr 16, 2026 |
| | CVE-1999-0668 | Microsoft | medium | 5.1 | 18.0%
| | The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which… | Aug 21, 1999 | Apr 16, 2026 |
| | CVE-1999-1052 | Microsoft | medium | 5.0 | 37.4%
| | Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which i… | Aug 24, 1999 | Apr 16, 2026 |
| | CVE-1999-1235 | Microsoft | medium | 4.6 | 0.4%
| | Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which co… | Aug 25, 1999 | Apr 16, 2026 |
| | CVE-1999-1016 | Microsoft | medium | 5.0 | 7.7%
| | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Expr… | Aug 27, 1999 | Apr 16, 2026 |
| | CVE-1999-0891 | Microsoft | medium | 5.0 | 52.5%
| | The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a… | Sep 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0670 | Microsoft | medium | 4.0 | 7.8%
| | Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands… | Sep 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0669 | Microsoft | medium | 4.0 | 14.4%
| | The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a r… | Sep 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0926 | Apache | critical | 10.0 | 8.2%
| | Apache allows remote attackers to conduct a denial of service via a large number of MIME headers. | Sep 3, 1999 | Apr 16, 2026 |
| | CVE-1999-1575 | Microsoft | medium | 5.1 | 36.7%
| | The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (img… | Sep 10, 1999 | Apr 16, 2026 |
| | CVE-1999-0910 | Microsoft | medium | 5.0 | 19.6%
| | Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, w… | Sep 10, 1999 | Apr 16, 2026 |
| | CVE-1999-0702 | Microsoft | critical | 10.0 | 42.4%
| | Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Exp… | Sep 10, 1999 | Apr 16, 2026 |
| | CVE-1999-1053 | Apache | high | 7.5 | 90.7%
| | guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separator… | Sep 13, 1999 | Apr 16, 2026 |
| | CVE-1999-0750 | Microsoft | medium | 5.1 | 3.9%
| | Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execut… | Sep 13, 1999 | Apr 16, 2026 |
| | CVE-1999-0909 | Microsoft | high | 7.5 | 4.3%
| | Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a ma… | Sep 20, 1999 | Apr 16, 2026 |
| | CVE-1999-0777 | Microsoft | high | 7.5 | 1.3%
| | IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have… | Sep 23, 1999 | Apr 16, 2026 |
| | CVE-1999-1578 | Microsoft | medium | 5.1 | 31.9%
| | Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for In… | Sep 24, 1999 | Apr 16, 2026 |
| | CVE-1999-1484 | Microsoft | high | 7.5 | 8.1%
| | Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker t… | Sep 24, 1999 | Apr 16, 2026 |
| | CVE-1999-0877 | Microsoft | medium | 4.3 | 20.9%
| | Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFR… | Oct 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0794 | Microsoft | medium | 4.6 | 0.3%
| | Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file. | Oct 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0895 |  Check Point | high | 7.5 | 0.6%
| | Firewall-1 does not properly restrict access to LDAP attributes. | Oct 20, 1999 | Apr 16, 2026 |
| | CVE-2000-0327 | Microsoft | high | 7.6 | 8.8%
| | Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute comman… | Oct 21, 1999 | Apr 16, 2026 |
| | CVE-1999-0766 | Microsoft | critical | 9.3 | 6.5%
| | The Microsoft Java Virtual Machine allows a malicious Java applet to execute arbitrary commands outs… | Oct 21, 1999 | Apr 16, 2026 |
| | CVE-1999-1577 | Microsoft | medium | 5.1 | 34.9%
| | Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allo… | Oct 31, 1999 | Apr 16, 2026 |
| | CVE-1999-0829 |  HPE | medium | 5.0 | 0.8%
| | HP Secure Web Console uses weak encryption. | Nov 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0827 | Microsoft | low | 2.6 | 0.9%
| | By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across differe… | Nov 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0354 | Microsoft | high | 7.5 | 3.1%
| | Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the… | Nov 1, 1999 | Apr 16, 2026 |
| | CVE-2000-0329 | Microsoft | medium | 5.1 | 7.3%
| | A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an atta… | Nov 11, 1999 | Apr 16, 2026 |
| | CVE-1999-1110 | Microsoft | medium | 5.0 | 23.5%
| | Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code w… | Nov 14, 1999 | Apr 16, 2026 |
| | CVE-1999-0793 | Microsoft | low | 2.6 | 22.7%
| | Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet. | Nov 17, 1999 | Apr 16, 2026 |
| | CVE-1999-0999 | Microsoft | medium | 4.3 | 16.1%
| | Microsoft SQL 7.0 server allows a remote attacker to cause a denial of service via a malformed TDS p… | Nov 19, 1999 | Apr 16, 2026 |
| | CVE-1999-0839 | Microsoft | high | 7.2 | 0.8%
| | Windows NT Task Scheduler installed with Internet Explorer 5 allows a user to gain privileges by mod… | Nov 29, 1999 | Apr 16, 2026 |
| | CVE-1999-0858 | Microsoft | medium | 5.0 | 11.9%
| | Internet Explorer 5 allows a remote attacker to modify the IE client's proxy configuration via a mal… | Dec 2, 1999 | Apr 16, 2026 |
| | CVE-1999-0989 | Microsoft | high | 7.5 | 7.0%
| | Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to exec… | Dec 6, 1999 | Apr 16, 2026 |
| | CVE-1999-0981 | Microsoft | medium | 5.1 | 4.6%
| | Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window… | Dec 8, 1999 | Apr 16, 2026 |
| | CVE-1999-0289 | Apache | medium | 5.0 | 1.3%
| | The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to… | Dec 12, 1999 | Apr 16, 2026 |
| | CVE-1999-0993 | Microsoft | high | 7.5 | 8.7%
| | Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the… | Dec 13, 1999 | Apr 16, 2026 |
| | CVE-2000-0025 | Microsoft | medium | 5.0 | 46.0%
| | IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is … | Dec 21, 1999 | Apr 16, 2026 |
| | CVE-2000-0024 | Microsoft | medium | 6.4 | 12.0%
| | IIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access rest… | Dec 21, 1999 | Apr 16, 2026 |
| | CVE-2000-0119 |  Trellix | high | 7.2 | 1.0%
| | The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check f… | Dec 22, 1999 | Apr 16, 2026 |
| | CVE-2000-0036 | Microsoft | medium | 5.0 | 19.7%
| | Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka t… | Dec 22, 1999 | Apr 16, 2026 |
| | CVE-2000-0028 | Microsoft | low | 2.6 | 19.2%
| | Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and… | Dec 23, 1999 | Apr 16, 2026 |
| | CVE-2000-0100 | Microsoft | high | 7.2 | 1.0%
| | The SMS Remote Control program is installed with insecure permissions, which allows local users to g… | Dec 29, 1999 | Apr 16, 2026 |
| | CVE-1999-1293 | Apache | critical | 10.0 | 1.3%
| | mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malfo… | Dec 31, 1999 | Apr 16, 2026 |
| | CVE-1999-1126 |  Cisco | low | 2.1 | 0.1%
| | Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that al… | Dec 31, 1999 | Apr 16, 2026 |
| | CVE-1999-1100 | Cisco | high | 7.5 | 0.5%
| | Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configura… | Dec 31, 1999 | Apr 16, 2026 |
| | CVE-1999-1042 | Cisco | low | 1.2 | 0.2%
| | Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which… | Dec 31, 1999 | Apr 16, 2026 |
| | CVE-1999-1591 | Microsoft | high | 7.5 | 12.5%
| | Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for … | Dec 31, 1999 | Apr 16, 2026 |