Vendor CVEs
Microsoft
All CVEs
14,175 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-1443 | 0.00 | — | 0.00 | Jun 2, 1998 | Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by (1) using and kill the process using the task manager, (2) booting the system from a separate disk, or (3)… | |||
| CVE-1999-0537 | 0.00 | — | 0.06 | Apr 1, 1998 | A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc. | |||
| CVE-1999-0258 | 0.00 | — | 0.06 | Feb 13, 1998 | Bonk variation of teardrop IP fragmentation denial of service. | |||
| CVE-1999-0331 | 0.00 | — | 0.05 | Jan 1, 1998 | Buffer overflow in Internet Explorer 4.0(1). | |||
| CVE-1999-0004 | 0.00 | — | 0.03 | Dec 16, 1997 | MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. | |||
| CVE-1999-1446 | 0.00 | — | 0.02 | Aug 5, 1997 | Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders… | |||
| CVE-1999-1217 | 0.00 | — | 0.01 | Jul 25, 1997 | The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories. | |||
| CVE-1999-0275 | 0.00 | — | 0.06 | Jun 10, 1997 | Denial of service in Windows NT DNS servers by flooding port 53 with too many characters. | |||
| CVE-1999-0227 | 0.00 | — | 0.05 | Jun 1, 1997 | Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service. | |||
| CVE-1999-0292 | 0.00 | — | 0.06 | Apr 1, 1997 | Denial of service through Winpopup using large user names. | |||
| CVE-1999-1128 | 0.00 | — | 0.04 | Mar 1, 1997 | Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user. | |||
| CVE-1999-0228 | 0.00 | — | 0.05 | Feb 7, 1997 | Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT. | |||
| CVE-1999-0575 | 0.00 | — | 0.05 | Jan 1, 1997 | A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking. | |||
| CVE-1999-0503 | 0.00 | — | 0.02 | Jan 1, 1997 | A Windows NT local user or administrator account has a guessable password. | |||
| CVE-1999-0499 | 0.00 | — | 0.05 | Jan 1, 1997 | NETBIOS share information may be published through SNMP registry keys in NT. | |||
| CVE-1999-0519 | 0.00 | — | 0.06 | Jan 1, 1997 | A NETBIOS/SMB share password is the default, null, or missing. | |||
| CVE-1999-0576 | 0.00 | — | 0.05 | Jan 1, 1997 | A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories. | |||
| CVE-1999-0534 | 0.00 | — | 0.02 | Jan 1, 1997 | A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory,… | |||
| CVE-1999-0518 | 0.00 | — | 0.05 | Jan 1, 1997 | A NETBIOS/SMB share password is guessable. | |||
| CVE-1999-0572 | 0.00 | — | 0.05 | Jan 1, 1997 | .reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks. | |||
| CVE-1999-0179 | 0.00 | — | 0.06 | Jan 1, 1997 | Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share. | |||
| CVE-1999-0496 | 0.00 | — | 0.01 | Jan 1, 1997 | A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin. | |||
| CVE-1999-0274 | 0.00 | — | 0.06 | Jan 1, 1997 | Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made. | |||
| CVE-1999-0535 | 0.00 | — | 0.06 | Jan 1, 1997 | A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness. | |||
| CVE-1999-1098 | 0.00 | — | 0.01 | Mar 3, 1995 | Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing. |
- CVE-1999-1443Jun 2, 1998risk 0.00cvss —epss 0.00
Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by (1) using and kill the process using the task manager, (2) booting the system from a separate disk, or (3)…
- CVE-1999-0537Apr 1, 1998risk 0.00cvss —epss 0.06
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
- CVE-1999-0258Feb 13, 1998risk 0.00cvss —epss 0.06
Bonk variation of teardrop IP fragmentation denial of service.
- CVE-1999-0331Jan 1, 1998risk 0.00cvss —epss 0.05
Buffer overflow in Internet Explorer 4.0(1).
- CVE-1999-0004Dec 16, 1997risk 0.00cvss —epss 0.03
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.
- CVE-1999-1446Aug 5, 1997risk 0.00cvss —epss 0.02
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders…
- CVE-1999-1217Jul 25, 1997risk 0.00cvss —epss 0.01
The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.
- CVE-1999-0275Jun 10, 1997risk 0.00cvss —epss 0.06
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
- CVE-1999-0227Jun 1, 1997risk 0.00cvss —epss 0.05
Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service.
- CVE-1999-0292Apr 1, 1997risk 0.00cvss —epss 0.06
Denial of service through Winpopup using large user names.
- CVE-1999-1128Mar 1, 1997risk 0.00cvss —epss 0.04
Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user.
- CVE-1999-0228Feb 7, 1997risk 0.00cvss —epss 0.05
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
- CVE-1999-0575Jan 1, 1997risk 0.00cvss —epss 0.05
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking.
- CVE-1999-0503Jan 1, 1997risk 0.00cvss —epss 0.02
A Windows NT local user or administrator account has a guessable password.
- CVE-1999-0499Jan 1, 1997risk 0.00cvss —epss 0.05
NETBIOS share information may be published through SNMP registry keys in NT.
- CVE-1999-0519Jan 1, 1997risk 0.00cvss —epss 0.06
A NETBIOS/SMB share password is the default, null, or missing.
- CVE-1999-0576Jan 1, 1997risk 0.00cvss —epss 0.05
A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.
- CVE-1999-0534Jan 1, 1997risk 0.00cvss —epss 0.02
A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory,…
- CVE-1999-0518Jan 1, 1997risk 0.00cvss —epss 0.05
A NETBIOS/SMB share password is guessable.
- CVE-1999-0572Jan 1, 1997risk 0.00cvss —epss 0.05
.reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.
- CVE-1999-0179Jan 1, 1997risk 0.00cvss —epss 0.06
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
- CVE-1999-0496Jan 1, 1997risk 0.00cvss —epss 0.01
A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.
- CVE-1999-0274Jan 1, 1997risk 0.00cvss —epss 0.06
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
- CVE-1999-0535Jan 1, 1997risk 0.00cvss —epss 0.06
A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness.
- CVE-1999-1098Mar 3, 1995risk 0.00cvss —epss 0.01
Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing.
Page 284 of 284