Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
1999-09-07 CVE-1999-1353 Unspecified vulnerability in Nosque Msgcore 2.14
Nosque MsgCore 2.14 stores passwords in cleartext: (1) the administrator password in the AdmPasswd registry key, and (2) user passwords in the Userbase.dbf data file, which could allow local users to gain privileges.
local
low complexity
nosque
4.6
1999-09-05 CVE-1999-1562 Unspecified vulnerability in Gftp FTP Client 1.13
gFTP FTP client 1.13, and other versions before 2.0.0, records a password in plaintext in (1) the log window, or (2) in a log file.
local
low complexity
gftp
4.6
1999-09-03 CVE-1999-0925 Unspecified vulnerability in Messagemedia Unitymail
UnityMail allows remote attackers to conduct a denial of service via a large number of MIME headers.
network
low complexity
messagemedia
5.0
1999-09-02 CVE-1999-1356 Unspecified vulnerability in Compaq Smartstart 4.50
Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.50 modifies the legal notice caption (LegalNoticeCaption) and text (LegalNoticeText) in Windows NT, which could produce a legal notice that is in violation of the security policy.
local
low complexity
compaq
4.6
1999-09-02 CVE-1999-0685 Unspecified vulnerability in Netscape Communicator
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
network
high complexity
netscape
5.1
1999-09-01 CVE-1999-0670 Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0
Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands.
network
high complexity
microsoft
4.0
1999-09-01 CVE-1999-0669 Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0
The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.
network
high complexity
microsoft
4.0
1999-08-31 CVE-1999-1515 Denial of Service vulnerability in Tenfour TFS Gateway 4.0
A non-default configuration in TenFour TFS Gateway 4.0 allows an attacker to cause a denial of service via messages with incorrect sender and recipient addresses, which causes the gateway to continuously try to return the message every 10 seconds.
network
low complexity
tenfour
5.0
1999-08-30 CVE-1999-1354 Unspecified vulnerability in Softarc Firstclass Internet Server
E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version 5.506, (2) network.fc for version 3.5, or (3) FCCLIENT.LOG when logging is enabled.
local
low complexity
softarc
4.6
1999-08-27 CVE-1999-1016 Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell.
network
low complexity
microsoft qualcomm
5.0