Security Vulnerabilities Published In May 1999 (CVSS score >= 6)

1999 : January February March April May June July August September October November December

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-1999-0489			1999-05-17	2018-10-12	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.
2	CVE-1999-0754		+Priv	1999-05-11	2008-09-09	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable.
3	CVE-1999-0765			1999-05-19	2008-09-09	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
SGI IRIX midikeys program allows local users to modify arbitrary files via a text editor.
4	CVE-1999-0920		Overflow +Priv	1999-05-26	2008-09-09	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.
5	CVE-1999-1241		Exec Code	1999-05-06	2021-07-23	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the FileSystemObject ActiveX object.
6	CVE-1999-1553		Exec Code Overflow	1999-05-01	2017-12-19	10.0	None	Remote	Low	Not required	Complete	Complete	Complete
Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line.
7	CVE-1999-0802	119	Exec Code Overflow	1999-05-27	2021-07-22	7.6	None	Remote	High	Not required	Complete	Complete	Complete
Buffer overflow in Internet Explorer 5 allows remote attackers to execute commands via a malformed Favorites icon.
8	CVE-1999-1029			1999-05-13	2017-12-19	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
SSH server (sshd2) before 2.0.12 does not properly record login attempts if the connection is closed before the maximum number of tries, allowing a remote attacker to guess the password without showing up in the audit logs.
9	CVE-1999-1368			1999-05-12	2021-04-09	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
AV Option for MS Exchange Server option for InoculateIT 4.53, and possibly other versions, only scans the Inbox folder tree of a Microsoft Exchange server, which could allow viruses to escape detection if a user's rules cause the message to be moved to a different mailbox.
10	CVE-1999-1510		DoS Exec Code Overflow	1999-05-17	2017-12-19	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.
11	CVE-2000-0412			1999-05-01	2008-09-10	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file.
12	CVE-1999-0773		Overflow	1999-05-11	2018-10-30	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Buffer overflow in Solaris lpset program allows local users to gain root access.
13	CVE-1999-0785		+Priv	1999-05-11	2008-09-09	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
14	CVE-1999-0806		Overflow	1999-05-10	2018-10-30	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Buffer overflow in Solaris dtprintinfo program.
15	CVE-1999-0807			1999-05-01	2008-09-09	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users.
16	CVE-1999-1414		+Priv	1999-05-25	2016-10-18	7.2	None	Local	Low	Not required	Complete	Complete	Complete
IBM Netfinity Remote Control allows local users to gain administrator privileges by starting programs from the process manager, which runs with system level privileges.
17	CVE-1999-0763			1999-05-01	2008-09-09	6.4	None	Remote	Low	Not required	None	Partial	Partial
NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network.
18	CVE-1999-0764			1999-05-01	2008-09-09	6.4	None	Remote	Low	Not required	None	Partial	Partial
NetBSD allows ARP packets to overwrite static ARP entries.
19	CVE-1999-1097			1999-05-04	2017-12-19	6.4	None	Remote	Low	Not required	Partial	Partial	None
Microsoft NetMeeting 2.1 allows one client to read the contents of another client's clipboard via a CTRL-C in the chat box when the box is empty.
20	CVE-1999-1485		DoS	1999-05-31	2017-12-19	6.4	None	Remote	Low	Not required	Partial	None	Partial
nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a possible denial of service by mounting the nsd virtual file system.

Total number of vulnerabilities : 20 Page : 1 (This Page)