Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Terminal_server
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 11 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 1999-08-09 | CVE-1999-0680 | Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service. | Terminal_server | N/A | ||
| 1999-09-20 | CVE-1999-0909 | Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability. | Terminal_server, Windows_95, Windows_98se, Windows_nt | N/A | ||
| 1999-01-05 | CVE-1999-0391 | The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user. | Terminal_server, Windows_2000, Windows_nt | N/A | ||
| 2007-05-11 | CVE-2007-2593 | The Terminal Server in Microsoft Windows 2003 Server, when using TLS, allows remote attackers to bypass SSL and self-signed certificate requirements, downgrade the server security, and possibly conduct man-in-the-middle attacks via unspecified vectors, as demonstrated using the Remote Desktop Protocol (RDP) 6.0 client. NOTE: a third party claims that the vendor may have fixed this in approximately 2006. | Terminal_server | N/A | ||
| 2001-10-30 | CVE-2001-0540 | Memory leak in Terminal servers in Windows NT and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed Remote Desktop Protocol (RDP) requests to port 3389. | Terminal_server | N/A | ||
| 2000-05-25 | CVE-2000-0404 | The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability. | Terminal_server, Windows_2000, Windows_95, Windows_98, Windows_nt | N/A | ||
| 2000-04-20 | CVE-2000-0331 | Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability. | Terminal_server, Windows_2000, Windows_nt | N/A | ||
| 2000-05-19 | CVE-2000-0305 | Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability. | Beos, Terminal_server, Windows_2000, Windows_95, Windows_98, Windows_nt | N/A | ||
| 2000-04-12 | CVE-2000-0259 | The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users. | Terminal_server, Windows_nt | N/A | ||
| 2000-03-30 | CVE-2000-0232 | Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. | Terminal_server, Windows_2000, Windows_nt | N/A |