Windows Nt
by Microsoft
CVEs (279)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0505 | 0.00 | — | 0.02 | Oct 1, 1998 | A Windows NT domain user or administrator account has a guessable password. | |||
| CVE-1999-0344 | 0.00 | — | 0.01 | Aug 1, 1998 | NT users can gain debug-level access on a system process using the Sechole exploit. | |||
| CVE-1999-0258 | 0.00 | — | 0.06 | Feb 13, 1998 | Bonk variation of teardrop IP fragmentation denial of service. | |||
| CVE-1999-1217 | 0.00 | — | 0.01 | Jul 25, 1997 | The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories. | |||
| CVE-1999-0275 | 0.00 | — | 0.06 | Jun 10, 1997 | Denial of service in Windows NT DNS servers by flooding port 53 with too many characters. | |||
| CVE-1999-0227 | 0.00 | — | 0.05 | Jun 1, 1997 | Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service. | |||
| CVE-1999-0292 | 0.00 | — | 0.06 | Apr 1, 1997 | Denial of service through Winpopup using large user names. | |||
| CVE-1999-0228 | 0.00 | — | 0.05 | Feb 7, 1997 | Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT. | |||
| CVE-1999-0519 | 0.00 | — | 0.06 | Jan 1, 1997 | A NETBIOS/SMB share password is the default, null, or missing. | |||
| CVE-1999-0534 | 0.00 | — | 0.02 | Jan 1, 1997 | A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory,… | |||
| CVE-1999-0179 | 0.00 | — | 0.06 | Jan 1, 1997 | Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share. | |||
| CVE-1999-0572 | 0.00 | — | 0.05 | Jan 1, 1997 | .reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks. | |||
| CVE-1999-0499 | 0.00 | — | 0.05 | Jan 1, 1997 | NETBIOS share information may be published through SNMP registry keys in NT. | |||
| CVE-1999-0535 | 0.00 | — | 0.06 | Jan 1, 1997 | A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness. | |||
| CVE-1999-0496 | 0.00 | — | 0.01 | Jan 1, 1997 | A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin. | |||
| CVE-1999-0575 | 0.00 | — | 0.05 | Jan 1, 1997 | A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking. | |||
| CVE-1999-0576 | 0.00 | — | 0.05 | Jan 1, 1997 | A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories. | |||
| CVE-1999-0274 | 0.00 | — | 0.06 | Jan 1, 1997 | Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made. | |||
| CVE-1999-0503 | 0.00 | — | 0.02 | Jan 1, 1997 | A Windows NT local user or administrator account has a guessable password. |
- CVE-1999-0505Oct 1, 1998risk 0.00cvss —epss 0.02
A Windows NT domain user or administrator account has a guessable password.
- CVE-1999-0344Aug 1, 1998risk 0.00cvss —epss 0.01
NT users can gain debug-level access on a system process using the Sechole exploit.
- CVE-1999-0258Feb 13, 1998risk 0.00cvss —epss 0.06
Bonk variation of teardrop IP fragmentation denial of service.
- CVE-1999-1217Jul 25, 1997risk 0.00cvss —epss 0.01
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.
- CVE-1999-0275Jun 10, 1997risk 0.00cvss —epss 0.06
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
- CVE-1999-0227Jun 1, 1997risk 0.00cvss —epss 0.05
Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service.
- CVE-1999-0292Apr 1, 1997risk 0.00cvss —epss 0.06
Denial of service through Winpopup using large user names.
- CVE-1999-0228Feb 7, 1997risk 0.00cvss —epss 0.05
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
- CVE-1999-0519Jan 1, 1997risk 0.00cvss —epss 0.06
A NETBIOS/SMB share password is the default, null, or missing.
- CVE-1999-0534Jan 1, 1997risk 0.00cvss —epss 0.02
A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory,…
- CVE-1999-0179Jan 1, 1997risk 0.00cvss —epss 0.06
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
- CVE-1999-0572Jan 1, 1997risk 0.00cvss —epss 0.05
.reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.
- CVE-1999-0499Jan 1, 1997risk 0.00cvss —epss 0.05
NETBIOS share information may be published through SNMP registry keys in NT.
- CVE-1999-0535Jan 1, 1997risk 0.00cvss —epss 0.06
A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness.
- CVE-1999-0496Jan 1, 1997risk 0.00cvss —epss 0.01
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.
- CVE-1999-0575Jan 1, 1997risk 0.00cvss —epss 0.05
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking.
- CVE-1999-0576Jan 1, 1997risk 0.00cvss —epss 0.05
A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.
- CVE-1999-0274Jan 1, 1997risk 0.00cvss —epss 0.06
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
- CVE-1999-0503Jan 1, 1997risk 0.00cvss —epss 0.02
A Windows NT local user or administrator account has a guessable password.
Page 14 of 14