Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-09-23 | CVE-1999-0908 | Unspecified vulnerability in SUN Solaris and Sunos Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter. | 5.0 |
| 1999-09-22 | CVE-1999-0786 | Unspecified vulnerability in SUN Solaris and Sunos The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack. | 4.6 |
| 1999-09-13 | CVE-1999-1014 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument. | 4.6 |
| 1999-09-13 | CVE-1999-0751 | Buffer Overflow vulnerability in Netscape Enterprise Accept Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch. | 5.0 |
| 1999-09-13 | CVE-1999-0750 | Unspecified vulnerability in Microsoft Hotmail Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account. | 5.1 |
| 1999-09-10 | CVE-1999-1575 | Unspecified vulnerability in Microsoft Internet Explorer 4.0.1/5.0 The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands. | 5.1 |
| 1999-09-10 | CVE-1999-0910 | Unspecified vulnerability in Microsoft products Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user. | 5.0 |
| 1999-09-09 | CVE-1999-1377 | Unspecified vulnerability in Matt Wright Download.Cgi 1.0 Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 1999-09-07 | CVE-1999-1353 | Unspecified vulnerability in Nosque Msgcore 2.14 Nosque MsgCore 2.14 stores passwords in cleartext: (1) the administrator password in the AdmPasswd registry key, and (2) user passwords in the Userbase.dbf data file, which could allow local users to gain privileges. | 4.6 |
| 1999-09-05 | CVE-1999-1562 | Unspecified vulnerability in Gftp FTP Client 1.13 gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file. | 4.6 |