Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Windows_98
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 86 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-05-03 | CVE-2001-0324 | Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a Java applet that opens a large number of UDP sockets, which prevents the host from establishing any additional UDP connections, and possibly causes a crash. | Windows_2000, Windows_98 | N/A | ||
| 2001-07-02 | CVE-2001-0238 | Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone restrictions via WebDAV requests. | Windows_2000, Windows_95, Windows_98, Windows_98se, Windows_me, Windows_nt | N/A | ||
| 2000-08-29 | CVE-2000-1079 | Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram. | Windows_2000, Windows_95, Windows_98, Windows_nt | N/A | ||
| 2001-01-09 | CVE-2000-1039 | Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without maintaining the connection state on the attacker host, aka the "NAPTHA" class of vulnerabilities. NOTE: this candidate may change significantly as the security community discusses the technical nature of NAPTHA and learns more about the affected applications. This candidate is at a higher level... | Windows_95, Windows_98, Windows_98se, Windows_me, Windows_nt | N/A | ||
| 2000-12-11 | CVE-2000-1003 | NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash. | Windows_95, Windows_98, Windows_98se | N/A | ||
| 2000-12-19 | CVE-2000-0980 | NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network. | Windows_95, Windows_98, Windows_98se, Windows_me | N/A | ||
| 2000-12-19 | CVE-2000-0979 | File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability. | Windows_95, Windows_98, Windows_98se, Windows_me | N/A | ||
| 2000-10-20 | CVE-2000-0742 | The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability. | Windows_95, Windows_98 | N/A | ||
| 2000-05-25 | CVE-2000-0404 | The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability. | Terminal_server, Windows_2000, Windows_95, Windows_98, Windows_nt | N/A | ||
| 2000-05-02 | CVE-2000-0347 | Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name. | Windows_95, Windows_98 | N/A |