Microsoft : Security Vulnerabilities, CVEs, Published In February 1999
Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX object.
Max CVSS
2.6
EPSS Score
0.48%
Published
1999-02-02
Updated
2021-07-22
FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.
Max CVSS
5.0
EPSS Score
16.85%
Published
1999-02-11
Updated
2016-10-18
Windows 95 and Windows 98 systems, when configured with multiple TCP/IP stacks bound to the same MAC address, allow remote attackers to cause a denial of service (traffic amplification) via a certain ICMP echo (ping) packet, which causes all stacks to send a ping response, aka TCP Chorusing.
Max CVSS
5.0
EPSS Score
1.88%
Published
1999-02-06
Updated
2017-10-10
In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.
Max CVSS
7.5
EPSS Score
0.23%
Published
1999-02-19
Updated
2020-11-23
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
Max CVSS
10.0
EPSS Score
3.37%
Published
1999-02-09
Updated
2016-10-18
Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting.
Max CVSS
7.5
EPSS Score
0.77%
Published
1999-02-22
Updated
2018-10-12
Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs.
Max CVSS
4.6
EPSS Score
0.05%
Published
1999-02-20
Updated
2018-10-12
The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini) which is not deleted.
Max CVSS
2.1
EPSS Score
0.16%
Published
1999-02-12
Updated
2018-10-12
In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash value.
Max CVSS
7.5
EPSS Score
1.00%
Published
1999-02-08
Updated
2018-10-12
9 vulnerabilities found