Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-11-16 | CVE-1999-1051 | Unspecified vulnerability in Matt Wright Formhandler.Cgi 1.0/2.0/3.0 Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter. | 5.0 |
| 1999-11-15 | CVE-1999-1190 | Buffer Overflow vulnerability in Admiral Systems Emailclub 1.0.0.5 Buffer overflow in POP3 server of Admiral Systems EmailClub 1.05 allows remote attackers to execute arbitrary commands via a long "From" header in an e-mail message. | 10.0 |
| 1999-11-14 | CVE-1999-1528 | Unspecified vulnerability in Prosoft Engineering Netware Client 5.12 ProSoft Netware Client 5.12 on Macintosh MacOS 9 does not automatically log a user out of the NDS tree when the user logs off the system, which allows other users of the same system access to the unprotected NDS session. | 4.6 |
| 1999-11-14 | CVE-1999-1110 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client. | 5.0 |
| 1999-11-12 | CVE-2000-0330 | Unspecified vulnerability in Microsoft Windows 95 and Windows 98 The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability. | 7.6 |
| 1999-11-12 | CVE-1999-1050 | Unspecified vulnerability in Matt Wright Formhandler.Cgi 1.0/2.0/3.0 Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. | 5.0 |
| 1999-11-11 | CVE-2000-0329 | Unspecified vulnerability in Microsoft products A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. | 5.1 |
| 1999-11-10 | CVE-1999-1539 | Unspecified vulnerability in QPC Software QVT NET and QVT Term Plus Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long (1) user name or (2) password. | 7.5 |
| 1999-11-10 | CVE-1999-1511 | DoS vulnerability in Artisoft Xtramail 1.11 Buffer overflows in Xtramail 1.11 allow attackers to cause a denial of service (crash) and possibly execute arbitrary commands via (1) a long PASS command in the POP3 service, (2) a long HELO command in the SMTP service, or (3) a long user name in the Control Service. | 7.5 |
| 1999-11-10 | CVE-1999-0851 | Denial of service in BIND named via naptr. | 2.1 |