CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-1999-0909
https://notcve.org/view.php?id=CVE-1999-0909
Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238453 http://www.securityfocus.com/bid/646 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-038 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-1999-0680
https://notcve.org/view.php?id=CVE-1999-0680
Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238600 http://www.ciac.org/ciac/bulletins/j-057.shtml http://www.securityfocus.com/bid/571 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-028 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-1999-0391
https://notcve.org/view.php?id=CVE-1999-0391
The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user. • https://marc.info/?l=bugtraq&m=91552769809542&w=2 •