Vulnerabilities > Microsoft > Windows NT > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-07-25 | CVE-1999-1217 | Unspecified vulnerability in Microsoft Windows NT The PATH in Windows NT includes the current working directory (.), which could allow local users to gain privileges by placing Trojan horse programs with the same name as commonly used system programs into certain directories. | 4.6 |
| 1997-07-10 | CVE-1999-1463 | Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0 Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session. | 5.0 |
| 1997-07-01 | CVE-1999-0153 | Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | 5.0 |
| 1997-07-01 | CVE-1999-0074 | Listening TCP ports are sequentially allocated, allowing spoofing attacks. | 6.4 |
| 1997-06-10 | CVE-1999-0275 | Unspecified vulnerability in Microsoft Windows NT Denial of service in Windows NT DNS servers by flooding port 53 with too many characters. | 5.0 |
| 1997-04-02 | CVE-1999-1387 | Unspecified vulnerability in Microsoft Windows NT 4.0 Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the Linux 2.0.29 kernel but executed on Linux 2.0.25. | 5.0 |
| 1997-04-01 | CVE-1999-0292 | Unspecified vulnerability in Microsoft Windows NT 4.0 Denial of service through Winpopup using large user names. | 5.0 |
| 1997-01-01 | CVE-1999-0582 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. | 5.0 |
| 1997-01-01 | CVE-1999-0534 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT A Windows NT user has inappropriate rights or privileges, e.g. | 4.6 |
| 1997-01-01 | CVE-1999-0274 | Unspecified vulnerability in Microsoft Windows NT 4.0 Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made. | 5.0 |