Windows Nt Security Vulnerabilities and Issues — Windows Nt CVE List

Lucene search

MicrosoftWindows Nt

10 matches found

CVE•added 2004/09/01 4:0 a.m.•73 views

CVE-2002-1257

Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to execute arbitrary code by including a Java applet that invokes COM (Component Object Model) objects in a web site or an HTML mail.

10CVSS7.4AI score0.07885EPSS

CVE•added 2004/09/01 4:0 a.m.•71 views

CVE-2003-0825

The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers to cause a denial of service and possibly execute arbitrary code.

9.3CVSS7.2AI score0.47442EPSS

CVE•added 2004/09/01 4:0 a.m.•66 views

CVE-2003-0003

Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service containing certain parameter information.

7.5CVSS7.5AI score0.27079EPSS

CVE•added 2004/09/01 4:0 a.m.•61 views

CVE-2002-1325

Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."

5CVSS6.4AI score0.05682EPSS

CVE•added 2004/09/01 4:0 a.m.•58 views

CVE-2002-1260

The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet.

7.5CVSS6.8AI score0.04521EPSS

CVE•added 2004/09/01 4:0 a.m.•54 views

CVE-2002-0694

The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execut...

7.5CVSS7.5AI score0.28961EPSS

CVE•added 2004/09/01 4:0 a.m.•50 views

CVE-1999-1365

Windows NT searches a user's home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program ...

7.2CVSS7AI score0.0307EPSS

CVE•added 2004/09/01 4:0 a.m.•46 views

CVE-2002-1183

Microsoft Windows 98 and Windows NT 4.0 do not properly verify the Basic Constraints of digital certificates, allowing remote attackers to execute code, aka "New Variant of Certificate Validation Flaw Could Enable Identity Spoofing" (CAN-2002-0862).

7.5CVSS6.8AI score0.20154EPSS

CVE•added 2004/09/01 4:0 a.m.•40 views

CVE-2002-1184

The system root folder of Microsoft Windows 2000 has default permissions of Everyone group with Full access (Everyone:F) and is in the search path when locating programs during login or application launch from the desktop, which could allow attackers to gain privileges as other users via Trojan hor...

4.6CVSS7.2AI score0.00853EPSS

CVE•added 2004/09/01 4:0 a.m.•30 views

CVE-1999-1217

The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories.

4.6CVSS7.3AI score0.00959EPSS