VYPR

Windows NT 4.0

by Microsoft

CVEs (47)

  • CVE-2001-0662Oct 30, 2001
    risk 0.02cvss epss 0.22

    RPC endpoint mapper in Windows NT 4.0 allows remote attackers to cause a denial of service (loss of RPC services) via a malformed request.

  • CVE-2001-0543Sep 20, 2001
    risk 0.02cvss epss 0.21

    Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed posts.

  • CVE-1999-1579Dec 14, 2000
    risk 0.02cvss epss 0.22

    The Cenroll ActiveX control (xenroll.dll) for Terminal Server Editions of Windows NT 4.0 and Windows NT Server 4.0 before SP6 allows remote attackers to cause a denial of service (resource consumption) by creating a large number of arbitrary files on the target machine.

  • CVE-1999-1387Apr 2, 1997
    risk 0.02cvss epss 0.21

    Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25.

  • CVE-2003-0525Aug 27, 2003
    risk 0.01cvss epss 0.08

    The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM…

  • CVE-2001-0017Mar 12, 2001
    risk 0.01cvss epss 0.17

    Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability.

  • CVE-2001-0045Feb 16, 2001
    risk 0.01cvss epss 0.08

    The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.

  • CVE-2000-0403May 25, 2000
    risk 0.01cvss epss 0.18

    The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announcement requests to the master browse tables, aka the "HostAnnouncement Flooding" or "HostAnnouncement Frame" vulnerability.

  • CVE-1999-1132Dec 31, 1999
    risk 0.01cvss epss 0.18

    Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information Field (RIF) field with a hop count greater than 7, or (2) a list containing duplicate Token Ring IDs.

  • CVE-1999-1157Dec 31, 1999
    risk 0.01cvss epss 0.13

    Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface.

  • CVE-1999-0815Dec 31, 1999
    risk 0.01cvss epss 0.18

    Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.

  • CVE-1999-0898Nov 4, 1999
    risk 0.01cvss epss 0.07

    Buffer overflows in Windows NT 4.0 print spooler allow remote attackers to gain privileges or cause a denial of service via a malformed spooler request.

  • CVE-1999-1291Oct 5, 1998
    risk 0.01cvss epss 0.13

    TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset (RST) via a PSH ACK or other means, obtaining the target's last sequence number from the resulting packet, then spoofing a reset to…

  • CVE-2007-1973Apr 11, 2007
    risk 0.00cvss epss 0.01

    Race condition in the Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0 allows local users to modify memory and gain privileges via the temporary \Device\PhysicalMemory section handle, a related issue to CVE-2007-1206.

  • CVE-2002-0366Jul 3, 2002
    risk 0.00cvss epss 0.03

    Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

  • CVE-2001-0046Feb 16, 2001
    risk 0.00cvss epss 0.05

    The default permissions for the SNMP Parameters registry key in Windows NT 4.0 allows remote attackers to read and possibly modify the SNMP community strings to obtain sensitive information or modify network configuration, aka one of the "Registry Permissions" vulnerabilities.

  • CVE-2001-0047Feb 16, 2001
    risk 0.00cvss epss 0.06

    The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnerabilities.

  • CVE-2000-0259Apr 12, 2000
    risk 0.00cvss epss 0.01

    The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users.

  • CVE-1999-0701Apr 11, 2000
    risk 0.00cvss epss 0.02

    After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password.

  • CVE-2000-0089Feb 4, 2000
    risk 0.00cvss epss 0.02

    The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.