Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Windows_98se
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 61 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-03-08 | CVE-2002-0053 | Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and other PROTOS-related candidates, especially CVE-2002-0012 and CVE-2002-0013, will be updated when more accurate information is available. | Windows_2000, Windows_95, Windows_98, Windows_98se, Windows_nt, Windows_xp | N/A | ||
| 2001-07-30 | CVE-2001-1055 | The Microsoft Windows network stack allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed ARP request packets with random source IP and MAC addresses, as demonstrated by ARPNuke. | Windows_98, Windows_98se | N/A | ||
| 2001-12-20 | CVE-2001-0877 | Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service via (1) a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic (e.g., chargen), or (2) via a spoofed SSDP announcement to broadcast or multicast addresses, which could cause all UPnP clients to send traffic to a single target system. | Windows_98, Windows_98se, Windows_me, Windows_xp | N/A | ||
| 2001-12-20 | CVE-2001-0876 | Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL. | Windows_98, Windows_98se, Windows_me, Windows_xp | N/A | ||
| 2001-12-06 | CVE-2001-0721 | Universal Plug and Play (UPnP) in Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service (memory consumption or crash) via a malformed UPnP request. | Windows_98, Windows_98se, Windows_me, Windows_xp | N/A | ||
| 2001-07-02 | CVE-2001-0238 | Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone restrictions via WebDAV requests. | Windows_2000, Windows_95, Windows_98, Windows_98se, Windows_me, Windows_nt | N/A | ||
| 2001-01-09 | CVE-2000-1039 | Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without maintaining the connection state on the attacker host, aka the "NAPTHA" class of vulnerabilities. NOTE: this candidate may change significantly as the security community discusses the technical nature of NAPTHA and learns more about the affected applications. This candidate is at a higher level... | Windows_95, Windows_98, Windows_98se, Windows_me, Windows_nt | N/A | ||
| 2000-12-11 | CVE-2000-1003 | NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash. | Windows_95, Windows_98, Windows_98se | N/A | ||
| 2000-12-19 | CVE-2000-0980 | NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network. | Windows_95, Windows_98, Windows_98se, Windows_me | N/A | ||
| 2000-12-19 | CVE-2000-0979 | File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability. | Windows_95, Windows_98, Windows_98se, Windows_me | N/A |