Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-12-31 | CVE-1999-1127 | Missing Release of Resource after Effective Lifetime vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerability. | 7.5 |
| 1999-11-16 | CVE-1999-1549 | Origin Validation Error vulnerability in Lynx Project Lynx 2.7/2.8 Lynx 2.x does not properly distinguish between internal and external HTML, which may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL that causes Lynx to modify the user's configuration file and execute commands. | 7.8 |
| 1999-03-01 | CVE-1999-0426 | Incorrect Default Permissions vulnerability in Suse Linux 6.0 The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing. | 9.8 |
| 1999-01-01 | CVE-1999-1568 | Off-by-one Error vulnerability in Ncftp Ncftpd Server Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command. | 7.5 |
| 1998-06-16 | CVE-1999-0783 | Link Following vulnerability in Freebsd 2.2 FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system. | 5.5 |
| 1998-06-03 | CVE-1999-1152 | Improper Restriction of Excessive Authentication Attempts vulnerability in Compaq Microcom 6000 Firmware Compaq/Microcom 6000 Access Integrator does not disconnect a client after a certain number of failed login attempts, which allows remote attackers to guess usernames or passwords via a brute force attack. | 7.5 |
| 1998-01-01 | CVE-1999-0239 | Improper Handling of Case Sensitivity vulnerability in Netscape Fasttrack Server 3.01 Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET. | 7.5 |
| 1997-01-01 | CVE-1999-0236 | Information Exposure vulnerability in multiple products ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. | 7.5 |