| | CVE-1999-0490 | Microsoft | high | 7.5 | 4.5%
| | MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user… | Apr 21, 1999 | Apr 16, 2026 |
| | CVE-1999-0684 | HPE | medium | 5.0 | 0.7%
| | Denial of service in Sendmail 8.8.6 in HPUX. | Apr 19, 1999 | Apr 16, 2026 |
| | CVE-1999-0468 | Microsoft | high | 8.2 | 1.9%
| | Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system usi… | Apr 9, 1999 | Apr 16, 2026 |
| | CVE-1999-0469 | Microsoft | medium | 5.0 | 11.6%
| | Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web s… | Apr 1, 1999 | Apr 16, 2026 |
| | CVE-2000-0153 | Microsoft | medium | 5.0 | 28.7%
| | FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attac… | Mar 26, 1999 | Apr 16, 2026 |
| | CVE-1999-1370 | Microsoft | high | 7.2 | 0.6%
| | The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could… | Mar 23, 1999 | Apr 16, 2026 |
| | CVE-1999-1397 | Microsoft | high | 7.5 | 2.6%
| | Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of … | Mar 23, 1999 | Apr 16, 2026 |
| | CVE-1999-0386 | Microsoft | medium | 5.0 | 61.2%
| | Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a rem… | Mar 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0430 | Cisco | medium | 5.0 | 0.7%
| | Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to per… | Mar 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0436 | HPE | medium | 4.6 | 0.1%
| | Domain Enterprise Server Management System (DESMS) in HP-UX allows local users to gain privileges. | Mar 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0379 | Microsoft | high | 7.5 | 8.9%
| | Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via ce… | Feb 22, 1999 | Apr 16, 2026 |
| | CVE-1999-0412 | Microsoft | high | 7.5 | 27.1%
| | In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as … | Feb 19, 1999 | Apr 16, 2026 |
| | CVE-1999-0372 | Microsoft | low | 2.1 | 6.3%
| | The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini… | Feb 12, 1999 | Apr 16, 2026 |
| | CVE-1999-1375 | Microsoft | medium | 5.0 | 74.0%
| | FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read … | Feb 11, 1999 | Apr 16, 2026 |
| | CVE-1999-0407 | Microsoft | critical | 10.0 | 29.6%
| | By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as prox… | Feb 9, 1999 | Apr 16, 2026 |
| | CVE-1999-1453 | Microsoft | low | 2.6 | 50.3%
| | Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of t… | Feb 2, 1999 | Apr 16, 2026 |
| | CVE-1999-0360 | Microsoft | high | 7.2 | 7.8%
| | MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web si… | Jan 30, 1999 | Apr 16, 2026 |
| | CVE-1999-0348 | Microsoft | medium | 5.0 | 13.2%
| | IIS ASP caching problem releases sensitive information when two virtual servers share the same physi… | Jan 27, 1999 | Apr 16, 2026 |
| | CVE-1999-0349 | Microsoft | high | 7.5 | 11.2%
| | A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of… | Jan 27, 1999 | Apr 16, 2026 |
| | CVE-1999-0449 | Microsoft | high | 7.8 | 36.2%
| | The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption… | Jan 26, 1999 | Apr 16, 2026 |
| | CVE-1999-0450 | Microsoft | high | 7.5 | 25.3%
| | In IIS, an attacker could determine a real path using a request for a non-existent URL that would be… | Jan 26, 1999 | Apr 16, 2026 |
| | CVE-1999-1544 | Microsoft | medium | 5.0 | 6.8%
| | Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attacke… | Jan 24, 1999 | Apr 16, 2026 |
| | CVE-1999-0678 | Apache | medium | 5.0 | 20.4%
| | A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows … | Jan 17, 1999 | Apr 16, 2026 |
| | CVE-1999-1376 | Microsoft | critical | 10.0 | 47.3%
| | Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers t… | Jan 14, 1999 | Apr 16, 2026 |
| | CVE-1999-1538 | Microsoft | low | 2.1 | 50.3%
| | When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does… | Jan 14, 1999 | Apr 16, 2026 |
| | CVE-1999-0391 | Microsoft | high | 7.5 | 4.5%
| | The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowi… | Jan 5, 1999 | Apr 16, 2026 |
| | CVE-2000-0005 | HPE | high | 7.2 | 0.1%
| | HP-UX aserver program allows local users to gain privileges via a symlink attack. | Jan 2, 1999 | Apr 16, 2026 |
| | CVE-1999-0364 | Microsoft | critical | 10.0 | 11.7%
| | Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to dat… | Jan 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0384 | Microsoft | medium | 4.6 | 0.3%
| | The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read … | Jan 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0448 | Microsoft | medium | 5.0 | 61.9%
| | IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote atta… | Jan 1, 1999 | Apr 16, 2026 |
| | CVE-1999-0332 | Microsoft | high | 7.5 | 3.8%
| | Buffer overflow in NetMeeting allows denial of service and remote command execution. | Dec 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0385 | Microsoft | critical | 10.0 | 9.0%
| | The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduc… | Dec 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0869 | Microsoft | low | 2.6 | 18.7%
| | Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of a… | Dec 1, 1998 | Apr 16, 2026 |
| | CVE-1999-1322 | Microsoft | medium | 4.6 | 0.6%
| | The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, … | Nov 12, 1998 | Apr 16, 2026 |
| | CVE-1999-0870 | Microsoft | low | 2.6 | 7.2%
| | Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into t… | Oct 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0871 | Microsoft | low | 2.6 | 11.2%
| | Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, … | Sep 4, 1998 | Apr 16, 2026 |
| | CVE-1999-1199 | Apache | critical | 10.0 | 5.1%
| | Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource e… | Aug 7, 1998 | Apr 16, 2026 |
| | CVE-1999-1447 | Microsoft | medium | 5.0 | 15.3%
| | Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code tha… | Jul 28, 1998 | Apr 16, 2026 |
| | CVE-1999-1582 | Cisco | high | 7.5 | 2.3%
| | By design, the "established" command on the Cisco PIX firewall allows connections from one host to a… | Jul 15, 1998 | Apr 16, 2026 |
| | CVE-1999-1433 | HPE | high | 7.2 | 0.6%
| | HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a… | Jul 15, 1998 | Apr 16, 2026 |
| | CVE-1999-1556 | Microsoft | high | 7.2 | 0.7%
| | Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account a… | Jun 29, 1998 | Apr 16, 2026 |
| | CVE-1999-0007 | HPE | medium | 5.0 | 7.5%
| | Information from SSL-encrypted sessions via PKCS #1. | Jun 26, 1998 | Apr 16, 2026 |
| | CVE-1999-0278 | Microsoft | medium | 5.0 | 76.4%
| | In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. | Jun 1, 1998 | Apr 16, 2026 |
| | CVE-1999-1204 | Check Point | high | 7.5 | 0.6%
| | Check Point Firewall-1 does not properly handle certain restricted keywords (e.g., Mail, auth, time)… | May 11, 1998 | Apr 16, 2026 |
| | CVE-1999-0537 | Microsoft | high | 7.5 | 0.9%
| | A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of… | Apr 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0551 | HPE | medium | 4.6 | 0.1%
| | HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requ… | Apr 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0012 | Microsoft | high | 7.0 | 0.7%
| | Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for fi… | Feb 6, 1998 | Apr 16, 2026 |
| | CVE-1999-0284 | Microsoft | high | 7.5 | 3.3%
| | Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer over… | Jan 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0331 | Microsoft | high | 7.5 | 3.2%
| | Buffer overflow in Internet Explorer 4.0(1). | Jan 1, 1998 | Apr 16, 2026 |
| | CVE-1999-0107 | Apache | medium | 5.0 | 35.6%
| | Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service wi… | Dec 30, 1997 | Apr 16, 2026 |