Search Results (29926 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-1999-0486 1 Aol 1 Instant Messenger 2026-04-16 N/A
Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash.
CVE-1999-0488 1 Microsoft 1 Internet Explorer 2026-04-16 N/A
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
CVE-1999-0494 1 Wingate 1 Wingate 2026-04-16 N/A
Denial of service in WinGate proxy through a buffer overflow in POP3.
CVE-1999-0498 2026-04-16 N/A
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.
CVE-1999-0504 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
A Windows NT local user or administrator account has a default, null, blank, or missing password.
CVE-2002-1500 1 Netbsd 1 Netbsd 2026-04-16 N/A
Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET().
CVE-1999-0507 2026-04-16 N/A
An account on a router, firewall, or other network device has a guessable password.
CVE-1999-0512 2026-04-16 N/A
A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.
CVE-1999-0527 2026-04-16 N/A
The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real password file is obtainable, or executable commands such as "ls" can be overwritten.
CVE-1999-0529 2026-04-16 N/A
A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc.
CVE-1999-0546 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The Windows NT guest account is enabled.
CVE-1999-0555 2026-04-16 N/A
A Unix account with a name other than "root" has UID 0, i.e. root privileges.
CVE-1999-0566 1 Ibm 1 Aix 2026-04-16 N/A
An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities.
CVE-1999-0578 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A Windows NT system's registry audit policy does not log an event success or failure for security-critical registry keys.
CVE-1999-0582 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc.
CVE-1999-0590 3 Apple, Linux, Microsoft 6 Macos, Linux Kernel, Windows 2000 and 3 more 2026-04-16 N/A
A system does not present an appropriate legal message or warning to a user who is accessing it.
CVE-1999-0593 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.
CVE-1999-0604 1 Selena Sol 1 Selena Sol Webstore 2026-04-16 N/A
An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information.
CVE-1999-0607 1 I-soft 1 Quikstore 2026-04-16 N/A
quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the cleartext administrator password and gain privileges.
CVE-1999-0609 1 Mercantec 1 Softcart 2026-04-16 N/A
An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information.