Microsoft Windows Nt vulnerabilities

CVE-1999-1127 [HIGH] CWE-772 CVE-1999-1127: Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote a Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service (resource exhaustion) via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerability.

CVE-1999-1316 [HIGH] CVE-1999-1316: Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, whic Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker to guess.

CVE-1999-1317 [MEDIUM] CVE-1999-1317: Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device.

CVE-1999-1222 [MEDIUM] CVE-1999-1222: Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash) Netbt.sys in Windows NT 4.0 allows remote malicious DNS servers to cause a denial of service (crash) by returning 0.0.0.0 as the IP address for a DNS host name lookup.

CVE-1999-1157 [MEDIUM] CVE-1999-1157: Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an I Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface.

CVE-1999-0815 [MEDIUM] CVE-1999-0815: Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial o Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.

CVE-1999-1132 [MEDIUM] CVE-1999-1132: Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing Windows NT 4.0 allows remote attackers to cause a denial of service (crash) via extra source routing data such as (1) a Routing Information Field (RIF) field with a hop count greater than 7, or (2) a list containing duplicate Token Ring IDs.

CVE-1999-1084 [MEDIUM] CVE-1999-1084: The "AEDebug" registry key is installed with insecure permissions, which allows local users to modif The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash.

CVE-1999-1452 [LOW] CVE-1999-1452: GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard o GINA in Windows NT 4.0 allows attackers with physical access to display a portion of the clipboard of the user who has locked the workstation by pasting (CTRL-V) the contents into the username prompt.

CVE-1999-1364 [LOW] CVE-1999-1364: Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode ad Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext.

CVE-1999-1294 [LOW] CVE-1999-1294: Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherite Office Shortcut Bar (OSB) in Windows 3.51 enables backup and restore permissions, which are inherited by programs such as File Manager that are started from the Shortcut Bar, which could allow local users to read folders for which they do not have permission.

CVE-1999-1363 [LOW] CVE-1999-1363: Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program Windows NT 3.51 and 4.0 allow local users to cause a denial of service (crash) by running a program that creates a large number of locks on a file, which exhausts the NonPagedPool.

CVE-1999-1360 [LOW] CVE-1999-1360: Windows NT 4.0 allows local users to cause a denial of service via a user mode application that clos Windows NT 4.0 allows local users to cause a denial of service via a user mode application that closes a handle that was opened in kernel mode, which causes a crash when the kernel attempts to close the handle.

CVE-1999-1362 [LOW] CVE-1999-1362: Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by c Win32k.sys in Windows NT 4.0 before SP2 allows local users to cause a denial of service (crash) by calling certain WIN32K functions with incorrect parameters.

CVE-1999-0995 [HIGH] CWE-20 CVE-1999-0995: Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via m Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."

CVE-1999-0994 [MEDIUM] CWE-255 CVE-1999-0994: Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowin Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.

CVE-1999-0975 [MEDIUM] CVE-1999-0975: The Windows help system can allow a local user to execute commands as another user by editing a tabl The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

CVE-1999-0819 [MEDIUM] CVE-1999-0819: NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it. NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.

CVE-1999-0824 [MEDIUM] CVE-1999-0824: A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the u A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users.

CVE-2000-0073 [MEDIUM] CVE-2000-0073: Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of ser Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word.