112 matches found
Microsoft Windows SMB Registry : Winlogon Cached Password Weakness
The registry key 'HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ Winlogon\CachedLogonsCount' is not 0. Using a value greater than 0 for the CachedLogonsCount key indicates that the remote Windows host locally caches the passwords of the users when they login, in order to continue to allow the...
CVE-2001-0015
CVE-2001-0015 affects Windows 2000 via the Network Dynamic Data Exchange (DDE) component. The vulnerability allows a local attacker to elevate privileges to Local System by sending a WM_COPYDATA message to an invisible DDE window that runs with WINLOGON privileges, enabling arbitrary command exec...
CVE-2000-0377
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability...
DoS против Windows NT
Некорректный удаленный запрос к реестру может вызвать DoS против процесса WinLogon и таким образом машины в целом...
CVE-2000-0377
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability...
Microsoft Windows NT 4.0 - Remote Registry Request Denial of Service (MS00-040) (2)
Microsoft Windows NT 4.0 - Remote Registry Request Denial of Service MS00-040 2 source: https://www.securityfocus.com/bid/1331/info In special circumstances while handling requests to access the Remote Registry Server, Windows NT 4.0 can crash due to winlogon.exe's inability to process specially...
Microsoft Windows SMB Registry : Winlogon Key Permission Weakness
The registry key HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon is writeable by users who are not in the admin group. This key contains a value which defines which program should be run when a user logs on. As this program runs in the SYSTEM context, the users who have the right to...
CVE-1999-0593
Windows NT permits shutdown without authentication due to the Winlogon ShutdownWithoutLogon default setting. Affected: Windows NT; component: Winlogon registry entry ShutdownWithoutLogon. Root cause: default configuration. Impact: local shutdown without login (availability). No exploit details or...
CVE-1999-0593
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in...
Microsoft Windows NT 4.0/SP1/SP2/SP3/SP4 / NT 3.5.1/SP1/SP2/SP3/SP4/SP5 - Screensaver
source: https://www.securityfocus.com/bid/474/info When the computer is idle for the set time period user definable Winlogon.exe starts the screensaver. The screen saver process is selectable by the user. Winlogon.exe uses the CreateProcessAPI call to start the screen saver and immediately suspen...
Microsoft Windows NT 4.0SP1SP2SP3SP4 NT 3.5.1SP1SP2SP3SP4SP5 - Screensaver
Microsoft Windows NT 4.0SP1SP2SP3SP4 NT 3.5.1SP1SP2SP3SP4SP5 - Screensaver source: https://www.securityfocus.com/bid/474/info When the computer is idle for the set time period user definable Winlogon.exe starts the screensaver. The screen saver process is selectable by the user. Winlogon.exe uses...
CVE-1999-0593
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in...