Microsoft » Windows Nt : Security Vulnerabilities, CVEs, CVSS score between 5 and 5.99
Teardrop IP denial of service.
Max CVSS
5.0
EPSS Score
0.13%
Published
1997-12-16
Updated
2018-05-03
Land IP denial of service.
Max CVSS
5.0
EPSS Score
0.15%
Published
1997-12-01
Updated
2008-09-09
Predictable TCP sequence numbers allow spoofing.
Max CVSS
5.0
EPSS Score
0.30%
Published
1995-01-01
Updated
2017-10-10
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.
Max CVSS
5.0
EPSS Score
1.49%
Published
1997-12-16
Updated
2018-08-22
Denial of service in RAS/PPTP on NT systems.
Max CVSS
5.0
EPSS Score
0.30%
Published
1999-06-30
Updated
2022-08-17
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
Max CVSS
5.0
EPSS Score
0.30%
Published
1997-07-01
Updated
2008-09-09
Windows NT crashes or locks up when a Samba client executes a "cd .." command on a file share.
Max CVSS
5.0
EPSS Score
7.50%
Published
1997-01-01
Updated
2018-08-13
Denial of service in Windows NT messenger service through a long username.
Max CVSS
5.0
EPSS Score
0.21%
Published
1999-07-23
Updated
2022-08-17
Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size.
Max CVSS
5.0
EPSS Score
0.28%
Published
1998-02-14
Updated
2008-09-09
Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service.
Max CVSS
5.0
EPSS Score
67.32%
Published
1997-06-01
Updated
2018-08-13
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
Max CVSS
5.0
EPSS Score
72.79%
Published
1997-02-07
Updated
2018-08-13
Bonk variation of teardrop IP fragmentation denial of service.
Max CVSS
5.0
EPSS Score
77.56%
Published
1998-02-13
Updated
2022-08-17
Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.
Max CVSS
5.0
EPSS Score
77.56%
Published
1997-01-01
Updated
2022-08-17
Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.
Max CVSS
5.0
EPSS Score
77.56%
Published
1997-06-10
Updated
2022-08-17
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
Max CVSS
5.0
EPSS Score
90.53%
Published
1998-06-01
Updated
2018-10-12
The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP frames to port 137 (NETBIOS Name Service), as demonstrated via a flood of random packets.
Max CVSS
5.0
EPSS Score
8.35%
Published
1998-08-01
Updated
2018-05-03
Denial of service through Winpopup using large user names.
Max CVSS
5.0
EPSS Score
77.56%
Published
1997-04-01
Updated
2022-08-17
Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files.
Max CVSS
5.0
EPSS Score
16.54%
Published
1999-04-12
Updated
2022-08-17
A Windows NT account policy has inappropriate, security-critical settings for lockout, e.g. lockout duration, lockout after bad logon attempts, etc.
Max CVSS
5.0
EPSS Score
7.50%
Published
1997-01-01
Updated
2022-08-17
Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option.
Max CVSS
5.0
EPSS Score
0.81%
Published
1999-05-27
Updated
2018-10-12
Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.
Max CVSS
5.0
EPSS Score
1.27%
Published
1999-12-31
Updated
2017-10-10
NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.
Max CVSS
5.0
EPSS Score
0.21%
Published
1999-12-01
Updated
2016-10-18
The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork.
Max CVSS
5.0
EPSS Score
18.17%
Published
1998-09-29
Updated
2018-10-12
Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration request.
Max CVSS
5.0
EPSS Score
8.35%
Published
2000-05-16
Updated
2018-10-12
Windows NT with SYSKEY reuses the keystream that is used for encrypting SAM password hashes, allowing an attacker to crack passwords.
Max CVSS
5.0
EPSS Score
1.68%
Published
1999-12-16
Updated
2018-10-12