CVSS: 7.5EPSS: 16%CPEs: 9EXPL: 1CVE-1999-0107 – Apache 1.2 - Denial of Service
https://notcve.org/view.php?id=CVE-1999-0107
30 Dec 1997 — Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. • https://www.exploit-db.com/exploits/20558 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-1999-1125
https://notcve.org/view.php?id=CVE-1999-1125
19 Sep 1997 — Oracle Webserver 2.1 and earlier runs setuid root, but the configuration file is owned by the oracle account, which allows any local or remote attacker who obtains access to the oracle account to gain privileges or modify arbitrary files by modifying the configuration file. • http://marc.info/?l=bugtraq&m=87602880019796&w=2 •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-1999-0071
https://notcve.org/view.php?id=CVE-1999-0071
01 Sep 1997 — Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0071 •
CVSS: 9.1EPSS: 13%CPEs: 11EXPL: 1CVE-1999-0045 – Apache 1.1 / NCSA HTTPd 1.5.2 / Netscape Server 1.12/1.1/2.0 - a nph-test-cgi
https://notcve.org/view.php?id=CVE-1999-0045
10 Dec 1996 — List of arbitrary files on Web host via nph-test-cgi script. • https://www.exploit-db.com/exploits/19536 •
CVSS: 9.1EPSS: 69%CPEs: 1EXPL: 1CVE-1999-0070 – Apache 0.8.x/1.0.x / NCSA HTTPd 1.x - 'test-cgi' Directory Listing
https://notcve.org/view.php?id=CVE-1999-0070
01 Apr 1996 — test-cgi program allows an attacker to list files on the server. • https://www.exploit-db.com/exploits/20435 •
CVSS: 10.0EPSS: 91%CPEs: 2EXPL: 0CVE-1999-0067
https://notcve.org/view.php?id=CVE-1999-0067
20 Mar 1996 — phf CGI program allows remote command execution through shell metacharacters. • http://www.cert.org/advisories/CA-1996-06.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •