Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Total 24883 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0357 1 Microsoft 1 Windows 98 2026-06-16 5.0 MEDIUM N/A
Windows 98 and other operating systems allows remote attackers to cause a denial of service via crafted "oshare" packets, possibly involving invalid fragmentation offsets.
CVE-1999-0354 1 Microsoft 2 Internet Explorer, Word 2026-06-16 7.5 HIGH N/A
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message.
CVE-1999-0349 1 Microsoft 1 Internet Information Server 2026-06-16 7.5 HIGH N/A
A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.
CVE-1999-0348 1 Microsoft 1 Internet Information Server 2026-06-16 5.0 MEDIUM N/A
IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory.
CVE-1999-0344 1 Microsoft 1 Windows Nt 2026-06-16 7.2 HIGH N/A
NT users can gain debug-level access on a system process using the Sechole exploit.
CVE-1999-0332 1 Microsoft 1 Netmeeting 2026-06-16 7.5 HIGH N/A
Buffer overflow in NetMeeting allows denial of service and remote command execution.
CVE-1999-0331 1 Microsoft 1 Internet Explorer 2026-06-16 7.5 HIGH N/A
Buffer overflow in Internet Explorer 4.0(1).
CVE-1999-0294 1 Microsoft 1 Wins 2026-06-16 5.0 MEDIUM N/A
All records in a WINS database can be deleted through SNMP for a denial of service.
CVE-1999-0292 1 Microsoft 1 Windows Nt 2026-06-16 5.0 MEDIUM N/A
Denial of service through Winpopup using large user names.
CVE-1999-0289 2 Apache, Microsoft 2 Http Server, Windows 2026-06-16 5.0 MEDIUM N/A
The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.
CVE-1999-0288 1 Microsoft 1 Windows Nt 2026-06-16 5.0 MEDIUM N/A
The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP frames to port 137 (NETBIOS Name Service), as demonstrated via a flood of random packets.
CVE-1999-0285 1 Microsoft 1 Windows Nt 2026-06-16 10.0 HIGH N/A
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
CVE-1999-0284 2 Ibm, Microsoft 2 Lotus Domino Mail Server, Exchange Server 2026-06-16 7.5 HIGH N/A
Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer overflow in the SMTP HELO command.
CVE-1999-0281 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-06-16 5.0 MEDIUM N/A
Denial of service in IIS using long URLs.
CVE-1999-0280 1 Microsoft 1 Internet Explorer 2026-06-16 7.5 HIGH N/A
Remote command execution in Microsoft Internet Explorer using .lnk and .url files.
CVE-1999-0278 1 Microsoft 2 Internet Information Server, Windows Nt 2026-06-16 5.0 MEDIUM N/A
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
CVE-1999-0275 1 Microsoft 1 Windows Nt 2026-06-16 5.0 MEDIUM N/A
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
CVE-1999-0274 1 Microsoft 1 Windows Nt 2026-06-16 5.0 MEDIUM N/A
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
CVE-1999-0258 1 Microsoft 2 Windows 95, Windows Nt 2026-06-16 5.0 MEDIUM N/A
Bonk variation of teardrop IP fragmentation denial of service.
CVE-1999-0256 2 Jgaa, Microsoft 3 Warftpd, Windows 95, Windows Nt 2026-06-16 7.5 HIGH N/A
Buffer overflow in War FTP allows remote execution of commands.