Vulnerabilities > Microsoft
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1998-10-01 | CVE-1999-0505 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT A Windows NT domain user or administrator account has a guessable password. | 7.2 |
| 1998-09-04 | CVE-1999-0871 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/4.0.1 Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, aka the "Cross Frame Navigate" vulnerability. | 2.6 |
| 1998-08-01 | CVE-1999-0288 | Unspecified vulnerability in Microsoft Windows NT 4.0 The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP frames to port 137 (NETBIOS Name Service), as demonstrated via a flood of random packets. | 5.0 |
| 1998-07-28 | CVE-1999-1447 | Unspecified vulnerability in Microsoft Internet Explorer 4.0 Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code that contains a long CLASSID parameter in an OBJECT tag. | 5.0 |
| 1998-06-29 | CVE-1999-1556 | Unspecified vulnerability in Microsoft SQL Server 6.5 Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the registry, which could allow local users to gain privileges by reading and decrypting the CmdExecAccount value. | 7.2 |
| 1998-06-26 | CVE-1999-0007 | USE of A Broken OR Risky Cryptographic Algorithm vulnerability in multiple products Information from SSL-encrypted sessions via PKCS #1. | 5.0 |
| 1998-06-01 | CVE-1999-0278 | Unspecified vulnerability in Microsoft Internet Information Server and Windows NT In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. | 5.0 |
| 1998-05-09 | CVE-1999-1361 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed packets, which causes the server to slow down and fill the event logs with error messages. | 6.4 |
| 1998-04-01 | CVE-1999-0537 | A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc. | 7.5 |
| 1998-02-14 | CVE-1999-0225 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size. | 5.0 |