Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Windows_nt
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 253 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-02-01 | CVE-2000-0121 | The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in the recycler directory, aka the "Recycle Bin Creation" vulnerability. | Windows_nt | N/A | ||
| 2000-02-04 | CVE-2000-0089 | The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability. | Windows_nt | N/A | ||
| 2000-02-18 | CVE-2000-0155 | Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive. | Windows_95, Windows_98, Windows_nt | N/A | ||
| 2000-04-11 | CVE-1999-0701 | After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password. | Windows_nt | N/A | ||
| 2000-05-16 | CVE-1999-0980 | Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration request. | Windows_nt | N/A | ||
| 2000-12-14 | CVE-1999-1579 | The Cenroll ActiveX control (xenroll.dll) for Terminal Server Editions of Windows NT 4.0 and Windows NT Server 4.0 before SP6 allows remote attackers to cause a denial of service (resource consumption) by creating a large number of arbitrary files on the target machine. | Windows_nt | N/A | ||
| 2002-12-31 | CVE-2002-2401 | NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs. | Windows_2000, Windows_nt, Windows_xp | N/A | ||
| 2002-12-31 | CVE-2002-2028 | The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing. | Windows_2000, Windows_nt, Windows_xp | N/A | ||
| 2002-12-31 | CVE-2002-1712 | Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3. | Windows_2000, Windows_nt | N/A | ||
| 1997-01-01 | CVE-1999-0582 | A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc. | Windows_2000, Windows_nt | N/A |