Windows 95 Security Vulnerabilities and Issues — Windows 95 CVE List

Lucene search

MicrosoftWindows 95

16 matches found

CVE•added 2000/02/04 5:0 a.m.•652 views

CVE-1999-0519

A NETBIOS/SMB share password is the default, null, or missing.

7.5CVSS6.8AI score0.08661EPSS

CVE•added 2009/01/15 1:30 a.m.•98 views

CVE-1999-1593

Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients a...

7.6CVSS6.9AI score0.042EPSS

CVE•added 2002/03/08 5:0 a.m.•88 views

CVE-2002-0053

Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and ot...

7.5CVSS7.8AI score0.63395EPSS

CVE•added 1999/09/29 4:0 a.m.•75 views

CVE-1999-0256

Buffer overflow in War FTP allows remote execution of commands.

7.5CVSS7.1AI score0.83285EPSS

CVE•added 2000/01/04 5:0 a.m.•70 views

CVE-1999-0918

Denial of service in various Windows systems via malformed, fragmented IGMP packets.

7.8CVSS6.6AI score0.34126EPSS

CVE•added 2004/09/01 4:0 a.m.•58 views

CVE-2002-1260

The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet.

7.5CVSS6.8AI score0.04521EPSS

CVE•added 2000/07/12 4:0 a.m.•56 views

CVE-2000-0305

Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability.

7.8CVSS6.7AI score0.30689EPSS

CVE•added 2000/01/04 5:0 a.m.•52 views

CVE-1999-0909

Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability.

7.5CVSS7AI score0.04231EPSS

CVE•added 2001/09/18 4:0 a.m.•52 views

CVE-2001-0238

Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone restrictions via WebDAV requests.

7.5CVSS7.1AI score0.05327EPSS

CVE•added 2000/02/23 5:0 a.m.•51 views

CVE-2000-0155

Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.

7.2CVSS7AI score0.01723EPSS

CVE•added 2000/11/29 5:0 a.m.•51 views

CVE-2000-1079

Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram.

7.5CVSS7AI score0.11149EPSS

CVE•added 2000/01/18 5:0 a.m.•50 views

CVE-1999-0875

DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.

7.5CVSS7.1AI score0.22421EPSS

CVE•added 2000/06/02 4:0 a.m.•49 views

CVE-2000-0330

The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.

7.6CVSS7.5AI score0.22854EPSS

CVE•added 2000/07/12 4:0 a.m.•44 views

CVE-1999-0387

A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords.

7.8CVSS6.8AI score0.24276EPSS

CVE•added 2005/07/27 4:0 a.m.•44 views

CVE-2005-2388

Buffer overflow in a certain USB driver, as used on Microsoft Windows, allows attackers to execute arbitrary code.

7.2CVSS7.8AI score0.0143EPSS

CVE•added 2000/02/04 5:0 a.m.•40 views

CVE-1999-0518

A NETBIOS/SMB share password is guessable.

7.5CVSS7.5AI score0.04001EPSS