Vulnerabilities > Microsoft
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-09-01 | CVE-1999-0191 | Unspecified vulnerability in Microsoft Internet Information Server 3.0 IIS newdsn.exe CGI script allows remote users to overwrite files. | 6.4 |
| 1997-08-05 | CVE-1999-1446 | Unspecified vulnerability in Microsoft Internet Explorer 3.0 Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored displays. | 2.1 |
| 1997-07-25 | CVE-1999-1217 | Unspecified vulnerability in Microsoft Windows NT The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories. | 4.6 |
| 1997-07-10 | CVE-1999-1463 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session. | 5.0 |
| 1997-07-01 | CVE-1999-0153 | Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | 5.0 |
| 1997-07-01 | CVE-1999-0074 | Listening TCP ports are sequentially allocated, allowing spoofing attacks. | 6.4 |
| 1997-06-10 | CVE-1999-0275 | Unspecified vulnerability in Microsoft Windows NT Denial of service in Windows NT DNS servers by flooding port 53 with too many characters. | 5.0 |
| 1997-06-01 | CVE-1999-0281 | Unspecified vulnerability in Microsoft products Denial of service in IIS using long URLs. | 5.0 |
| 1997-04-02 | CVE-1999-1387 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25. | 5.0 |
| 1997-04-01 | CVE-1999-0292 | Unspecified vulnerability in Microsoft Windows NT 4.0 Denial of service through Winpopup using large user names. | 5.0 |