Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0819Microsoft Windows NT vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
56.5%
top 1.87%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows NT
Timeline
PublishedDec 1
Latest updateApr 30

Description

NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-w2fr-8h6p-j4jg: NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it2022-04-30
CVEList
CVE-1999-0819: NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it2000-06-02

💥Exploits & PoCs

1
Exploit-DB
DeskPro 1.1 - Multiple SQL Injections2003-10-20
CVE-1999-0819 — Microsoft Windows NT vulnerability | cvebase