Security Vulnerabilities, CVEs, Published In April 1999
Vulnerability in the Wguest CGI program.
Max CVSS
7.5
EPSS Score
1.50%
Published
1999-04-09
Updated
2022-08-17
Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file.
Max CVSS
7.5
EPSS Score
0.34%
Published
1999-04-05
Updated
2022-08-17
Patrol management software allows a remote attacker to conduct a replay attack to steal the administrator password.
Max CVSS
10.0
EPSS Score
0.73%
Published
1999-04-01
Updated
2008-09-09
Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files.
Max CVSS
5.0
EPSS Score
16.54%
Published
1999-04-12
Updated
2022-08-17
In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.
Max CVSS
5.0
EPSS Score
1.22%
Published
1999-04-01
Updated
2008-09-09
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-04-12
Updated
2008-09-09
Local users can gain privileges using the debug utility in the MPE/iX operating system.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-04-01
Updated
2013-07-23
The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-04-21
Updated
2008-09-09
The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.
Max CVSS
5.0
EPSS Score
0.47%
Published
1999-04-01
Updated
2022-08-17
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component.
Max CVSS
2.6
EPSS Score
0.23%
Published
1999-04-09
Updated
2021-07-22
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.
Max CVSS
5.0
EPSS Score
85.34%
Published
1999-04-01
Updated
2022-08-17
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
Max CVSS
5.0
EPSS Score
0.38%
Published
1999-04-09
Updated
2008-09-09
The remote proxy server in Winroute allows a remote attacker to reconfigure the proxy without authentication through the "cancel" button.
Max CVSS
5.0
EPSS Score
0.95%
Published
1999-04-09
Updated
2022-08-17
The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it.
Max CVSS
5.0
EPSS Score
1.22%
Published
1999-04-07
Updated
2022-08-17
The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-04-07
Updated
2008-09-09
The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory.
Max CVSS
5.0
EPSS Score
0.47%
Published
1999-04-05
Updated
2022-08-17
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail.
Max CVSS
1.2
EPSS Score
0.04%
Published
1999-04-05
Updated
2022-08-17
Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack.
Max CVSS
2.1
EPSS Score
0.06%
Published
1999-04-01
Updated
2022-08-17
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
Max CVSS
7.5
EPSS Score
1.17%
Published
1999-04-21
Updated
2021-07-22
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag.
Max CVSS
7.5
EPSS Score
0.99%
Published
1999-04-21
Updated
2021-07-22
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-04-20
Updated
2014-12-31
The ffingerd 1.19 allows remote attackers to identify users on the target system based on its responses.
Max CVSS
10.0
EPSS Score
3.64%
Published
1999-04-23
Updated
2022-08-17
An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information.
Max CVSS
5.0
EPSS Score
0.15%
Published
1999-04-20
Updated
2016-10-18
An incorrect configuration of the Order Form 1.0 shopping cart CGI program could disclose private information.
Max CVSS
5.0
EPSS Score
0.17%
Published
1999-04-01
Updated
2016-10-18
An incorrect configuration of the EZMall 2000 shopping cart CGI program "mall2000.cgi" could disclose private information.
Max CVSS
5.0
EPSS Score
0.17%
Published
1999-04-01
Updated
2016-10-18