Vulnerabilities > Microsoft

DATE CVE VULNERABILITY TITLE RISK
1997-08-05 CVE-1999-1446 Unspecified vulnerability in Microsoft Internet Explorer 3.0
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored displays.
local
low complexity
microsoft
2.1
1997-07-25 CVE-1999-1217 Unspecified vulnerability in Microsoft Windows NT
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.
local
low complexity
microsoft
4.6
1997-07-10 CVE-1999-1463 Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0
Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session.
network
low complexity
microsoft
5.0
1997-07-01 CVE-1999-0153 Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
network
low complexity
microsoft sco
5.0
1997-07-01 CVE-1999-0074 Listening TCP ports are sequentially allocated, allowing spoofing attacks.
network
low complexity
netbsd microsoft freebsd linux
6.4
1997-06-10 CVE-1999-0275 Unspecified vulnerability in Microsoft Windows NT
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
network
low complexity
microsoft
5.0
1997-06-01 CVE-1999-0281 Unspecified vulnerability in Microsoft products
Denial of service in IIS using long URLs.
network
low complexity
microsoft
5.0
1997-04-02 CVE-1999-1387 Unspecified vulnerability in Microsoft Windows NT 4.0
Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25.
network
low complexity
microsoft
5.0
1997-04-01 CVE-1999-0292 Unspecified vulnerability in Microsoft Windows NT 4.0
Denial of service through Winpopup using large user names.
network
low complexity
microsoft
5.0
1997-04-01 CVE-1999-0280 Unspecified vulnerability in Microsoft Internet Explorer 3.0/3.0.1
Remote command execution in Microsoft Internet Explorer using .lnk and .url files.
network
low complexity
microsoft
7.5