VYPR

Vendor CVEs

Microsoft

All CVEs

14,175 total · sorted by risk
  • CVE-1999-1443Jun 2, 1998
    risk 0.00cvss epss 0.00

    Micah Software Full Armor Network Configurator and Zero Administration allow local users with physical access to bypass the desktop protection by (1) using and kill the process using the task manager, (2) booting the system from a separate disk, or (3)…

  • CVE-1999-0537Apr 1, 1998
    risk 0.00cvss epss 0.06

    A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.

  • CVE-1999-0258Feb 13, 1998
    risk 0.00cvss epss 0.06

    Bonk variation of teardrop IP fragmentation denial of service.

  • CVE-1999-0331Jan 1, 1998
    risk 0.00cvss epss 0.05

    Buffer overflow in Internet Explorer 4.0(1).

  • CVE-1999-0004Dec 16, 1997
    risk 0.00cvss epss 0.03

    MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.

  • CVE-1999-1446Aug 5, 1997
    risk 0.00cvss epss 0.02

    Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders…

  • CVE-1999-1217Jul 25, 1997
    risk 0.00cvss epss 0.01

    The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.

  • CVE-1999-0275Jun 10, 1997
    risk 0.00cvss epss 0.06

    Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.

  • CVE-1999-0227Jun 1, 1997
    risk 0.00cvss epss 0.05

    Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service.

  • CVE-1999-0292Apr 1, 1997
    risk 0.00cvss epss 0.06

    Denial of service through Winpopup using large user names.

  • CVE-1999-1128Mar 1, 1997
    risk 0.00cvss epss 0.04

    Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user.

  • CVE-1999-0228Feb 7, 1997
    risk 0.00cvss epss 0.05

    Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.

  • CVE-1999-0575Jan 1, 1997
    risk 0.00cvss epss 0.05

    A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking.

  • CVE-1999-0503Jan 1, 1997
    risk 0.00cvss epss 0.02

    A Windows NT local user or administrator account has a guessable password.

  • CVE-1999-0499Jan 1, 1997
    risk 0.00cvss epss 0.05

    NETBIOS share information may be published through SNMP registry keys in NT.

  • CVE-1999-0519Jan 1, 1997
    risk 0.00cvss epss 0.06

    A NETBIOS/SMB share password is the default, null, or missing.

  • CVE-1999-0576Jan 1, 1997
    risk 0.00cvss epss 0.05

    A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.

  • CVE-1999-0534Jan 1, 1997
    risk 0.00cvss epss 0.02

    A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory,…

  • CVE-1999-0518Jan 1, 1997
    risk 0.00cvss epss 0.05

    A NETBIOS/SMB share password is guessable.

  • CVE-1999-0572Jan 1, 1997
    risk 0.00cvss epss 0.05

    .reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.

  • CVE-1999-0179Jan 1, 1997
    risk 0.00cvss epss 0.06

    Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.

  • CVE-1999-0496Jan 1, 1997
    risk 0.00cvss epss 0.01

    A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.

  • CVE-1999-0274Jan 1, 1997
    risk 0.00cvss epss 0.06

    Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.

  • CVE-1999-0535Jan 1, 1997
    risk 0.00cvss epss 0.06

    A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness.

  • CVE-1999-1098Mar 3, 1995
    risk 0.00cvss epss 0.01

    Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing.

Page 284 of 284