Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
1999-01-01 CVE-1999-0454 A remote attacker can sometimes identify the operating system of a host based on how it reacts to some IP or ICMP packets, using a tool such as nmap or queso.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0452 A service or application has a backdoor password that was placed there by the developer.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0397 The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0394 DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0364 Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.
network
low complexity
fms-inc microsoft
critical
 10.0
10
1999-01-01 CVE-1999-0361 NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0286 In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0285 Unspecified vulnerability in Microsoft Windows NT
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
network
low complexity
microsoft
critical
 10.0
10
1999-01-01 CVE-1999-0283 The Java Web Server would allow remote users to obtain the source code for CGI programs.
network
low complexity
critical
 10.0
10
1999-01-01 CVE-1999-0268 Unspecified vulnerability in Metainfo Metaweb
MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.
network
low complexity
metainfo
critical
 10.0
10