Vulnerabilities > Microsoft > Windows NT > 4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
1999-12-31 | CVE-1999-1360 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close the handle. | 2.1 |
1999-12-31 | CVE-1999-1317 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device. | 4.6 |
1999-12-31 | CVE-1999-1316 | Unspecified vulnerability in Microsoft Windows NT 4.0 Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker to guess. | 7.5 |
1999-12-31 | CVE-1999-1222 | Unspecified vulnerability in Microsoft Windows NT 4.0 Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash) by returning 0.0.0.0 as the IP address for a DNS host name lookup. | 5.0 |
1999-12-31 | CVE-1999-1157 | Denial-Of-Service vulnerability in Windows NT Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface. | 5.0 |
1999-12-31 | CVE-1999-1132 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information Field (RIF) field with a hop count greater than 7, or (2) a list containing duplicate Token Ring IDs. | 5.0 |
1999-12-31 | CVE-1999-1127 | Missing Release of Resource after Effective Lifetime vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerability. | 7.5 |
1999-12-31 | CVE-1999-1084 | Unspecified vulnerability in Microsoft Windows NT 4.0 The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash. | 4.6 |
1999-12-31 | CVE-1999-0815 | Unspecified vulnerability in Microsoft Windows NT 4.0 Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries. | 5.0 |
1999-12-10 | CVE-1999-0975 | Unspecified vulnerability in Microsoft Windows 95, Windows 98 and Windows NT The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed. | 4.6 |