Vulnerabilities > Microsoft > Windows NT > 3.5.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-01-10 | CVE-2006-0010 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft products Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overflow during decompression. | 9.3 |
| 2001-03-12 | CVE-2001-0017 | Unspecified vulnerability in Microsoft Windows NT Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability. | 5.0 |
| 2001-03-12 | CVE-2001-0016 | Unspecified vulnerability in Microsoft Windows NT NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local users to gain administrator level access. | 7.2 |
| 2000-07-01 | CVE-1999-0585 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT A Windows NT administrator account has the default name of Administrator. | 2.1 |
| 2000-06-01 | CVE-1999-0590 | A system does not present an appropriate legal message or warning to a user who is accessing it. | 10.0 |
| 2000-01-20 | CVE-1999-0595 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT A Windows NT system does not clear the system page file during shutdown, which might allow sensitive information to be recorded. | 2.1 |
| 1999-12-31 | CVE-1999-1455 | Unspecified vulnerability in Microsoft Windows NT RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specified in the .Rhosts file when a user comes from an authorized host, which could allow unauthorized users to access the service by logging in from an authorized host. | 7.5 |
| 1999-12-31 | CVE-1999-1363 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool. | 2.1 |
| 1999-12-31 | CVE-1999-1362 | Unspecified vulnerability in Microsoft Windows NT Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters. | 2.1 |
| 1999-12-31 | CVE-1999-1317 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device. | 4.6 |