Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-11-19 | CVE-1999-1475 | Unspecified vulnerability in Proftpd Project Proftpd 1.2 ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. | 4.6 |
| 1999-11-19 | CVE-1999-0831 | Denial of service in Linux syslogd via a large number of connections. | 5.0 |
| 1999-11-17 | CVE-1999-1519 | Buffer Overflow DoS vulnerability in Gene6 G6 FTP Server 2.0 Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) via a long (1) user name or (2) password. | 5.0 |
| 1999-11-17 | CVE-1999-1092 | Unspecified vulnerability in Iain LEA TIN 1.40 tin 1.40 creates the .tin directory with insecure permissions, which allows local users to read passwords from the .inputhistory file. | 4.6 |
| 1999-11-16 | CVE-1999-1051 | Unspecified vulnerability in Matt Wright Formhandler.Cgi 1.0/2.0/3.0 Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter. | 5.0 |
| 1999-11-14 | CVE-1999-1528 | Unspecified vulnerability in Prosoft Engineering Netware Client 5.12 ProSoft Netware Client 5.12 on Macintosh MacOS 9 does not automatically log a user out of the NDS tree when the user logs off the system, which allows other users of the same system access to the unprotected NDS session. | 4.6 |
| 1999-11-14 | CVE-1999-1110 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Windows Media Player ActiveX object as used in Internet Explorer 5.0 returns a specific error code when a file does not exist, which allows remote malicious web sites to determine the existence of files on the client. | 5.0 |
| 1999-11-12 | CVE-1999-1050 | Unspecified vulnerability in Matt Wright Formhandler.Cgi 1.0/2.0/3.0 Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. | 5.0 |
| 1999-11-11 | CVE-2000-0329 | Unspecified vulnerability in Microsoft products A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. | 5.1 |
| 1999-11-10 | CVE-1999-0849 | Unspecified vulnerability in ISC Bind Denial of service in BIND named via maxdname. | 5.0 |