Vulnerabilities > Microsoft
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-04-21 | CVE-1999-0490 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. | 7.5 |
| 1999-04-21 | CVE-1999-0488 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/4.0.1/5.0 Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. | 7.5 |
| 1999-04-12 | CVE-1999-0444 | Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files. | 5.0 |
| 1999-04-09 | CVE-1999-0468 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component. | 2.6 |
| 1999-04-01 | CVE-1999-0469 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client. | 5.0 |
| 1999-03-23 | CVE-1999-1397 | Remote Registry vulnerability in Microsoft Index Server 2.0 Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of the AllowedPaths registry key, whose permissions allows local and remote users to obtain the physical paths of directories that are being indexed. | 7.5 |
| 1999-03-23 | CVE-1999-1370 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could leave the system open to users with physical access if a failure occurs during an unattended installation, and (2) the Task Scheduler Service, which might prevent the scheduled execution of security-critical programs. | 7.2 |
| 1999-03-12 | CVE-1999-0382 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges. | 7.2 |
| 1999-03-08 | CVE-1999-1254 | Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables. | 5.0 |
| 1999-03-01 | CVE-1999-0386 | Unspecified vulnerability in Microsoft Frontpage and Personal web Server Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL. | 5.0 |