Windows Nt@* Security Vulnerabilities and Issues — Page 2 of Windows Nt@* CVE List

Lucene search

MicrosoftWindows Nt*

64 matches found

CVE•added 2001/05/07 4:0 a.m.•39 views

CVE-2001-0017

Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability.

5CVSS6.6AI score0.19067EPSS

CVE•added 2000/02/04 5:0 a.m.•38 views

CVE-1999-0581

The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions.

10CVSS7AI score0.04008EPSS

CVE•added 2002/03/09 5:0 a.m.•38 views

CVE-1999-1358

When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy f...

4.6CVSS6.8AI score0.00227EPSS

CVE•added 2000/02/04 5:0 a.m.•37 views

CVE-1999-0549

Windows NT automatically logs in an administrator upon rebooting.

7.2CVSS7AI score0.00411EPSS

CVE•added 2000/02/04 5:0 a.m.•36 views

CVE-1999-0534

A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single Process...

4.6CVSS7.5AI score0.00272EPSS

CVE•added 2000/01/04 5:0 a.m.•35 views

CVE-1999-0987

Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name.

10CVSS7AI score0.05512EPSS

CVE•added 2002/03/09 5:0 a.m.•35 views

CVE-1999-1359

When the Ntconfig.pol file is used on a server whose name is longer than 13 characters, Windows NT does not properly enforce policies for global groups, which could allow users to bypass restrictions that were intended by those policies.

7.5CVSS7AI score0.06691EPSS

CVE•added 2000/02/04 5:0 a.m.•34 views

CVE-1999-0593

The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.

4.9CVSS6.6AI score0.00494EPSS

CVE•added 2002/06/25 4:0 a.m.•34 views

CVE-1999-1362

Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.

2.1CVSS6.6AI score0.00244EPSS

CVE•added 2000/02/04 5:0 a.m.•31 views

CVE-1999-0582

A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc.

5CVSS7.4AI score0.07541EPSS

CVE•added 2001/09/12 4:0 a.m.•31 views

CVE-1999-1463

Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session.

5CVSS7.7AI score0.03994EPSS

CVE•added 2004/09/01 4:0 a.m.•30 views

CVE-1999-1217

The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.

4.6CVSS7.3AI score0.00448EPSS

CVE•added 2001/05/03 4:0 a.m.•30 views

CVE-2001-0281

Format string vulnerability in DbgPrint function, used in debug messages for some Windows NT drivers (possibly when called through DebugMessage), may allow local users to gain privileges.

7.2CVSS7AI score0.00632EPSS

CVE•added 2000/02/04 5:0 a.m.•28 views

CVE-1999-0576

A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.

7.5CVSS7.4AI score0.06569EPSS

Total number of security vulnerabilities64