Vulnerabilities > Microsoft

DATE CVE VULNERABILITY TITLE RISK
1999-04-21 CVE-1999-0488 Unspecified vulnerability in Microsoft Internet Explorer 4.0/4.0.1/5.0
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
network
low complexity
microsoft
7.5
1999-04-12 CVE-1999-0444 Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT
Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files.
network
low complexity
microsoft
5.0
1999-04-09 CVE-1999-0468 Unspecified vulnerability in Microsoft Internet Explorer 5.0
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component.
network
high complexity
microsoft
2.6
1999-04-01 CVE-1999-0469 Unspecified vulnerability in Microsoft Internet Explorer 5.0
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.
network
low complexity
microsoft
5.0
1999-03-23 CVE-1999-1397 Remote Registry vulnerability in Microsoft Index Server 2.0
Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of the AllowedPaths registry key, whose permissions allows local and remote users to obtain the physical paths of directories that are being indexed.
network
low complexity
microsoft
7.5
1999-03-23 CVE-1999-1370 Unspecified vulnerability in Microsoft Internet Explorer 5.0
The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could leave the system open to users with physical access if a failure occurs during an unattended installation, and (2) the Task Scheduler Service, which might prevent the scheduled execution of security-critical programs.
local
low complexity
microsoft
7.2
1999-03-12 CVE-1999-0382 Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0
The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges.
local
low complexity
microsoft
7.2
1999-03-08 CVE-1999-1254 Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables.
network
low complexity
microsoft
5.0
1999-03-01 CVE-1999-0386 Unspecified vulnerability in Microsoft Frontpage and Personal web Server
Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL.
network
low complexity
microsoft
5.0
1999-02-22 CVE-1999-0379 Unspecified vulnerability in Microsoft Backoffice Resource KIT 2.0
Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting.
network
low complexity
microsoft
7.5