Every CVE whose affected-product data names Microsoft Windows Nt, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2005-0050 — CVSS 10.0 (critical): The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of…
CVE-2002-1257 — CVSS 10.0 (critical): Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to execute arbitrary code by including a Java…
CVE-2002-0018 — CVSS 10.0 (critical): In Microsoft Windows NT and Windows 2000, a trusting domain that receives authorization information from a trusted domain does not verify…
CVE-2004-1080 — CVSS 10.0 (critical): The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to…
CVE-1999-0987 — CVSS 10.0 (critical): Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.
CVE-2000-1089 — CVSS 10.0 (critical): Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer…
CVE-1999-0874 — CVSS 10.0 (critical): Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM…
CVE-1999-0285 — CVSS 10.0 (critical): Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
CVE-2003-0715 — CVSS 10.0 (critical): Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to…
CVE-2003-0528 — CVSS 10.0 (critical): Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to…
CVE-2001-0045 — CVSS 10.0 (critical): The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the…
CVE-1999-0535 — CVSS 10.0 (critical): A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or…
CVE-2004-0201 — CVSS 10.0 (critical): Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003…
CVE-2004-0212 — CVSS 10.0 (critical): Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or…
CVE-1999-0489 — CVSS 10.0 (critical): MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of…
CVE-2004-0568 — CVSS 10.0 (critical): HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a…
CVE-2004-0571 — CVSS 10.0 (critical): Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute…
CVE-1999-0577 — CVSS 10.0 (critical): A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories.
CVE-2004-0574 — CVSS 10.0 (critical): The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange…
CVE-1999-0579 — CVSS 10.0 (critical): A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys.
CVE-2004-0900 — CVSS 10.0 (critical): The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain…
CVE-2004-0901 — CVSS 10.0 (critical): Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data lengths, which allows…
CVE-2002-0391 — CVSS 9.8 (critical): Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including…
CVE-2000-1218 — CVSS 9.8 (critical): The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to…
CVE-2008-5232 — CVSS 9.3 (critical): Buffer overflow in the CallHTMLHelp method in the Microsoft Windows Media Services ActiveX control in nskey.dll 4.1.00.3917 in Windows…
CVE-2006-2379 — CVSS 9.3 (critical): Buffer overflow in the TCP/IP Protocol driver in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote…
CVE-2007-6026 — CVSS 9.3 (critical): Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003…
CVE-2003-0825 — CVSS 9.3 (critical): The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly…
CVE-1999-0572 — CVSS 9.3 (critical): .reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.
CVE-2006-0010 — CVSS 9.3 (critical): Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows…
CVE-1999-0886 — CVSS 9.0 (critical): The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager.
CVE-1999-0728 — CVSS 7.8 (high): A Windows NT user can disable the keyboard or mouse by directly calling the IOCTLs which control them.
CVE-2003-1048 — CVSS 7.8 (high): Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service…
CVE-2006-0988 — CVSS 7.8 (high): The default configuration of the DNS Server service on Windows Server 2003 and Windows 2000, and the Microsoft DNS Server service on…
CVE-1999-0721 — CVSS 7.8 (high): Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request.
CVE-1999-0726 — CVSS 7.8 (high): An attacker can conduct a denial of service in Windows NT by executing a program with a malformed file image header.
CVE-1999-0995 — CVSS 7.8 (high): Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids…
CVE-2000-0305 — CVSS 7.8 (high): Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by…
CVE-2002-0070 — CVSS 7.6 (high): Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a…
CVE-2003-0906 — CVSS 7.6 (high): Buffer overflow in the rendering for (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats in Microsoft Windows NT 4.0…
CVE-2003-0806 — CVSS 7.5 (high): Buffer overflow in the Windows logon process (winlogon) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, and XP SP1, when a member…
CVE-2005-1935 — CVSS 7.5 (high): Heap-based buffer overflow in the BERDecBitString function in Microsoft ASN.1 library (MSASN1.DLL) allows remote attackers to execute…
CVE-2003-0345 — CVSS 7.5 (high): Buffer overflow in the SMB capability for Microsoft Windows XP, 2000, and NT allows remote attackers to cause a denial of service and…
CVE-2003-0352 — CVSS 7.5 (high): Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to…
CVE-2003-0469 — CVSS 7.5 (high): Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of…
CVE-2005-0416 — CVSS 7.5 (high): The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allows…
CVE-2003-0533 — CVSS 7.5 (high): Stack-based buffer overflow in certain Active Directory service functions in LSASRV.DLL of the Local Security Authority Subsystem Service…
CVE-2003-0660 — CVSS 7.5 (high): The Authenticode capability in Microsoft Windows NT through Server 2003 does not prompt the user to download and install ActiveX controls…
CVE-2002-1183 — CVSS 7.5 (high): Microsoft Windows 98 and Windows NT 4.0 do not properly verify the Basic Constraints of digital certificates, allowing remote attackers to…
CVE-2003-0711 — CVSS 7.5 (high): Stack-based buffer overflow in the PCHealth system in the Help and Support Center function in Windows XP and Windows Server 2003 allows…
CVE-2006-0034 — CVSS 7.5 (high): Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction…
CVE-2003-0717 — CVSS 7.5 (high): The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers…
CVE-2003-0719 — CVSS 7.5 (high): Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft…
CVE-2000-0885 — CVSS 7.5 (high): Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a…
CVE-2003-0003 — CVSS 7.5 (high): Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows…
CVE-2003-0010 — CVSS 7.5 (high): Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating…
CVE-2005-0045 — CVSS 7.5 (high): The Server Message Block (SMB) implementation for Windows NT 4.0, 2000, XP, and Server 2003 does not properly validate certain SMB packets…
CVE-2002-0724 — CVSS 7.5 (high): Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows attackers to cause a…
CVE-2002-0694 — CVSS 7.5 (high): The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows…
CVE-1999-0909 — CVSS 7.5 (high): Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the…
CVE-2000-1079 — CVSS 7.5 (high): Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers…
CVE-2002-0693 — CVSS 7.5 (high): Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT…
CVE-1999-0366 — CVSS 7.5 (high): In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null…
CVE-1999-1127 — CVSS 7.5 (high): Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service…
CVE-2002-0053 — CVSS 7.5 (high): Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause…
CVE-1999-0391 — CVSS 7.5 (high): The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response…
CVE-2001-1452 — CVSS 7.5 (high): By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows…
CVE-1999-1316 — CVSS 7.5 (high): Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker…
CVE-1999-1359 — CVSS 7.5 (high): When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for…
CVE-1999-0576 — CVSS 7.5 (high): A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.
CVE-2004-0569 — CVSS 7.5 (high): The RPC Runtime Library for Microsoft Windows NT 4.0 allows remote attackers to read active memory or cause a denial of service (system…
CVE-2001-0341 — CVSS 7.5 (high): Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute…
CVE-2004-0567 — CVSS 7.5 (high): The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Server SP3 and SP4…
CVE-1999-1455 — CVSS 7.5 (high): RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specified in the .Rhosts file when a user…
CVE-1999-0504 — CVSS 7.5 (high): A Windows NT local user or administrator account has a default, null, blank, or missing password.
CVE-2000-1149 — CVSS 7.5 (high): Buffer overflow in RegAPI.DLL used by Windows NT 4.0 Terminal Server allows remote attackers to execute arbitrary commands via a long…
CVE-2004-0206 — CVSS 7.5 (high): Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003…
CVE-2001-0238 — CVSS 7.5 (high): Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone…
CVE-2000-0256 — CVSS 7.5 (high): Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not…
CVE-2001-0047 — CVSS 7.5 (high): The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary…
CVE-2004-0123 — CVSS 7.5 (high): Double free vulnerability in the ASN.1 library as used in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003, allows remote…
CVE-1999-0575 — CVSS 7.5 (high): A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of…
CVE-2002-1260 — CVSS 7.5 (high): The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5.0.3805 and earlier allow remote attackers to bypass security…
CVE-2003-0818 — CVSS 7.5 (high): Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and…
CVE-2004-0893 — CVSS 7.2 (high): The Local Procedure Call (LPC) interface of the Windows Kernel for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does…
CVE-2000-0070 — CVSS 7.2 (high): NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka "Spoofed LPC Port Request."
CVE-2002-0366 — CVSS 7.2 (high): Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows…
CVE-2002-0151 — CVSS 7.2 (high): Buffer overflow in Multiple UNC Provider (MUP) in Microsoft Windows operating systems allows local users to cause a denial of service or…
CVE-2001-0281 — CVSS 7.2 (high): Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers (possibly when called through…
CVE-2003-0659 — CVSS 7.2 (high): Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1)…
CVE-1999-0382 — CVSS 7.2 (high): The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with…
CVE-2004-0208 — CVSS 7.2 (high): The Virtual DOS Machine (VDM) subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users…
CVE-2000-0155 — CVSS 7.2 (high): Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to…
CVE-2003-0910 — CVSS 7.2 (high): The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows…
CVE-2004-0118 — CVSS 7.2 (high): The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures…
CVE-1999-0701 — CVSS 7.2 (high): After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local…
CVE-2000-0259 — CVSS 7.2 (high): The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain…
CVE-2003-1407 — CVSS 7.2 (high): Buffer overflow in cmd.exe in Windows NT 4.0 may allow local users to execute arbitrary code via a long pathname argument to the cd command.
CVE-1999-1365 — CVSS 7.2 (high): Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as…
CVE-2001-0016 — CVSS 7.2 (high): NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local…
CVE-1999-0506 — CVSS 7.2 (high): A Windows NT domain user or administrator account has a default, null, blank, or missing password.
CVE-1999-0496 — CVSS 7.2 (high): A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka…
CVE-1999-0898 — CVSS 7.2 (high): Buffer overflows in Windows NT 4.0 print spooler allow remote attackers to gain privileges or cause a denial of service via a malformed…
CVE-1999-0899 — CVSS 7.2 (high): The Windows NT 4.0 print spooler allows a local user to execute arbitrary commands due to inappropriate permissions that allow the user to…
CVE-2005-2827 — CVSS 7.2 (high): The thread termination routine in the kernel for Windows NT 4.0 and 2000 (NTOSKRNL.EXE) allows local users to modify kernel memory and…
CVE-1999-0723 — CVSS 7.1 (high): The Windows NT Client Server Runtime Subsystem (CSRSS) can be subjected to a denial of service when all worker threads are waiting for user…
CVE-2001-0006 — CVSS 7.1 (high): The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to…
CVE-2007-1973 — CVSS 6.9 (medium): Race condition in the Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0 allows local users to modify memory and…
CVE-2007-1912 — CVSS 6.8 (medium): Heap-based buffer overflow in Microsoft Windows allows user-assisted remote attackers to have an unknown impact via a crafted .HLP file.
CVE-2002-0862 — CVSS 6.8 (medium): The (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs within the CryptoAPI for Microsoft…
CVE-1999-1361 — CVSS 6.4 (medium): Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource…
CVE-1999-0700 — CVSS 6.2 (medium): Buffer overflow in Microsoft Phone Dialer (dialer.exe), via a malformed dialer entry in the dialer.ini file.
CVE-2002-0725 — CVSS 5.5 (medium): NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local attackers to hide file usage activities via a hard link to the target…
CVE-2004-1306 — CVSS 5.1 (medium): Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote…
CVE-2003-0813 — CVSS 5.1 (medium): A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a…
CVE-2004-1049 — CVSS 5.1 (medium): Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp…
CVE-2006-1591 — CVSS 5.1 (medium): Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted…
CVE-2000-0404 — CVSS 5.0 (medium): The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master…
CVE-1999-0225 — CVSS 5.0 (medium): Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does…
CVE-1999-0274 — CVSS 5.0 (medium): Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
CVE-1999-0288 — CVSS 5.0 (medium): The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via…
CVE-1999-0444 — CVSS 5.0 (medium): Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each…
CVE-1999-0582 — CVSS 5.0 (medium): A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon…
CVE-1999-0755 — CVSS 5.0 (medium): Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option.
CVE-1999-0815 — CVSS 5.0 (medium): Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a…
CVE-1999-0969 — CVSS 5.0 (medium): The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an…
CVE-1999-0980 — CVSS 5.0 (medium): Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource…
CVE-1999-0994 — CVSS 5.0 (medium): Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
CVE-1999-1132 — CVSS 5.0 (medium): Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information…
CVE-1999-1157 — CVSS 5.0 (medium): Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet…
CVE-1999-1222 — CVSS 5.0 (medium): Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash) by returning 0.0.0.0 as the IP address…
CVE-1999-1234 — CVSS 5.0 (medium): LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1)…
CVE-1999-1254 — CVSS 5.0 (medium): Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which…
CVE-1999-1291 — CVSS 5.0 (medium): TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing…
CVE-1999-1387 — CVSS 5.0 (medium): Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those…
CVE-1999-1463 — CVSS 5.0 (medium): Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending…
CVE-1999-1579 — CVSS 5.0 (medium): The Cenroll ActiveX control (xenroll.dll) for Terminal Server Editions of Windows NT 4.0 and Windows NT Server 4.0 before SP6 allows remote…
CVE-1999-1581 — CVSS 5.0 (medium): Memory leak in Simple Network Management Protocol (SNMP) agent (snmp.exe) for Windows NT 4.0 before Service Pack 4 allows remote attackers…
CVE-2000-0073 — CVSS 5.0 (medium): Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word.
CVE-2000-0328 — CVSS 5.0 (medium): Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and…
CVE-2000-0331 — CVSS 5.0 (medium): Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service…
CVE-2000-0377 — CVSS 5.0 (medium): The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which…
CVE-2000-0403 — CVSS 5.0 (medium): The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host…
CVE-2000-0544 — CVSS 5.0 (medium): Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that…
CVE-2000-0673 — CVSS 5.0 (medium): The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by…
CVE-2000-0858 — CVSS 5.0 (medium): Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed…
CVE-2000-1039 — CVSS 5.0 (medium): Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP…
CVE-2000-1200 — CVSS 5.0 (medium): Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy…
CVE-2000-1227 — CVSS 5.0 (medium): Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB…
CVE-2001-0003 — CVSS 5.0 (medium): Web Extender Client (WEC) in Microsoft Office 2000, Windows 2000, and Windows Me does not properly process Internet Explorer security…
CVE-2001-0017 — CVSS 5.0 (medium): Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the…
CVE-2001-0509 — CVSS 5.0 (medium): Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and earlier, (2) Microsoft SQL Server 2000 and earlier, (3) Windows NT…
CVE-2001-0543 — CVSS 5.0 (medium): Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via…
CVE-2001-0662 — CVSS 5.0 (medium): RPC endpoint mapper in Windows NT 4.0 allows remote attackers to cause a denial of service (loss of RPC services) via a malformed request.
CVE-2001-0663 — CVSS 5.0 (medium): Terminal Server in Windows NT and Windows 2000 allows remote attackers to cause a denial of service via a sequence of invalid Remote…
CVE-2001-0879 — CVSS 5.0 (medium): Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service.
CVE-2001-1244 — CVSS 5.0 (medium): Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the…
CVE-2002-0421 — CVSS 5.0 (medium): IIS 4.0 allows local users to bypass the "User cannot change password" policy for Windows NT by directly calling .htr password changing…
CVE-2002-0699 — CVSS 5.0 (medium): Unknown vulnerability in the Certificate Enrollment ActiveX Control in Microsoft Windows 98, Windows 98 Second Edition, Windows Millennium…
CVE-2002-0863 — CVSS 5.0 (medium): Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext…
CVE-2002-1258 — CVSS 5.0 (medium): Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other…
CVE-2002-1325 — CVSS 5.0 (medium): Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet…
CVE-2002-1561 — CVSS 5.0 (medium): The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC…
CVE-2002-1712 — CVSS 5.0 (medium): Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets…
CVE-2003-0227 — CVSS 5.0 (medium): The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft…