Search Results (287 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-1258 1 Microsoft 8 Windows 2000, Windows 2000 Terminal Services, Windows 95 and 5 more 2026-04-16 N/A
Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error.
CVE-2002-1325 1 Microsoft 8 Windows 2000, Windows 2000 Terminal Services, Windows 95 and 5 more 2026-04-16 N/A
Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."
CVE-1999-0179 1 Microsoft 2 Windows 95, Windows Nt 2026-04-16 N/A
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
CVE-1999-0074 4 Freebsd, Linux, Microsoft and 1 more 4 Freebsd, Linux Kernel, Windows Nt and 1 more 2026-04-16 N/A
Listening TCP ports are sequentially allocated, allowing spoofing attacks.
CVE-2000-0197 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain privileges by providing a Trojan horse batch file in place of the original batch file.
CVE-2000-0089 1 Microsoft 1 Windows Nt 2026-04-16 N/A
The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability.
CVE-1999-0595 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded.
CVE-1999-1463 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session.
CVE-1999-1364 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext.
CVE-1999-0560 1 Microsoft 1 Windows Nt 2026-04-16 N/A
A system-critical Windows NT file or directory has inappropriate permissions.
CVE-1999-0258 1 Microsoft 2 Windows 95, Windows Nt 2026-04-16 N/A
Bonk variation of teardrop IP fragmentation denial of service.
CVE-1999-1362 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.
CVE-1999-1361 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed packets, which causes the server to slow down and fill the event logs with error messages.
CVE-1999-0549 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT automatically logs in an administrator upon rebooting.
CVE-1999-1359 1 Microsoft 1 Windows Nt 2026-04-16 N/A
When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions that were intended by those policies.
CVE-1999-1358 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy file to be read-only.
CVE-1999-0535 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or uniqueness.
CVE-1999-0249 1 Microsoft 2 Windows 2000, Windows Nt 2026-04-16 N/A
Windows NT RSHSVC program allows remote users to execute arbitrary commands.
CVE-1999-0104 4 Caldera, Hp, Microsoft and 1 more 5 Openlinux, Hp-ux, Windows 95 and 2 more 2026-04-16 N/A
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.
CVE-1999-1363 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool.