Vulnerabilities > Microsoft
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-12-31 | CVE-1999-1087 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/4.0.1 Internet Explorer 4 treats a 32-bit number ("dotless IP address") in the a URL as the hostname instead of an IP address, which causes IE to apply Local Intranet Zone settings to the resulting web page, allowing remote malicious web servers to conduct unauthorized activities by using URLs that contain the dotless IP address for their server. | 7.5 |
| 1999-12-31 | CVE-1999-1084 | Unspecified vulnerability in Microsoft Windows NT 4.0 The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash. | 4.6 |
| 1999-12-31 | CVE-1999-1055 | Unspecified vulnerability in Microsoft Excel 97 Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the CALL function to execute a malicious DLL, aka the Excel "CALL Vulnerability." | 7.5 |
| 1999-12-31 | CVE-1999-1043 | Unspecified vulnerability in Microsoft Exchange Server 5.0/5.5 Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote attackers to cause a denial of service (application error). | 5.0 |
| 1999-12-31 | CVE-1999-1035 | Unspecified vulnerability in Microsoft Internet Information Server 3.0/4.0 IIS 3.0 and 4.0 on x86 and Alpha allows remote attackers to cause a denial of service (hang) via a malformed GET request, aka the IIS "GET" vulnerability. | 5.0 |
| 1999-12-31 | CVE-1999-0815 | Unspecified vulnerability in Microsoft Windows NT 4.0 Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries. | 5.0 |
| 1999-12-31 | CVE-1999-0154 | Unspecified vulnerability in Microsoft products IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . | 5.0 |
| 1999-12-29 | CVE-2000-0100 | Unspecified vulnerability in Microsoft Systems Management Server 2.0 The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program. | 7.2 |
| 1999-12-23 | CVE-2000-0028 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function. | 2.6 |
| 1999-12-13 | CVE-1999-0993 | Improper Initialization vulnerability in Microsoft Exchange Server 5.0/5.5 Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed. | 7.5 |