Microsoft : Security Vulnerabilities, CVEs, Published In 2000 (Denial of service) CVSS score >= 1
Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back.
Max CVSS
5.0
EPSS Score
2.38%
Published
2000-12-31
Updated
2019-04-30
Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.
Max CVSS
5.0
EPSS Score
74.15%
Published
2000-12-11
Updated
2020-04-09
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash.
Max CVSS
2.6
EPSS Score
0.67%
Published
2000-12-11
Updated
2017-10-10
Microsoft NetMeeting with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service (CPU utilization) via a sequence of null bytes to the NetMeeting port, aka the "NetMeeting Desktop Sharing" vulnerability.
Max CVSS
5.0
EPSS Score
10.76%
Published
2000-12-19
Updated
2018-10-12
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
Max CVSS
5.0
EPSS Score
0.40%
Published
2000-12-19
Updated
2018-10-12
Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability.
Max CVSS
5.0
EPSS Score
1.90%
Published
2000-11-14
Updated
2017-10-10
Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability.
Max CVSS
2.6
EPSS Score
0.61%
Published
2000-11-14
Updated
2018-10-12
annclist.exe in webTV for Windows allows remote attackers to cause a denial of service by via a large, malformed UDP packet to ports 22701 through 22705.
Max CVSS
5.0
EPSS Score
5.03%
Published
2000-11-14
Updated
2018-10-12
Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability.
Max CVSS
2.1
EPSS Score
0.05%
Published
2000-10-20
Updated
2018-10-12
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service.
Max CVSS
5.0
EPSS Score
0.19%
Published
2000-10-20
Updated
2008-09-05
The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
Max CVSS
5.0
EPSS Score
1.87%
Published
2000-10-20
Updated
2018-10-12
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.
Max CVSS
5.0
EPSS Score
96.51%
Published
2000-10-20
Updated
2017-07-12
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in some components by requesting a URL whose name includes a standard DOS device name.
Max CVSS
5.0
EPSS Score
96.42%
Published
2000-10-20
Updated
2008-09-05
The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name Server Protocol Spoofing" vulnerability.
Max CVSS
5.0
EPSS Score
5.91%
Published
2000-07-27
Updated
2018-10-12
An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability.
Max CVSS
5.0
EPSS Score
2.38%
Published
2000-07-14
Updated
2018-10-30
Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.
Max CVSS
5.0
EPSS Score
13.37%
Published
2000-06-30
Updated
2008-09-10
Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.
Max CVSS
5.0
EPSS Score
1.33%
Published
2000-06-30
Updated
2008-09-10
Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.
Max CVSS
5.0
EPSS Score
0.29%
Published
2000-06-05
Updated
2008-09-10
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
Max CVSS
5.0
EPSS Score
0.19%
Published
2000-06-05
Updated
2020-04-02
Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.
Max CVSS
5.0
EPSS Score
24.10%
Published
2000-05-30
Updated
2018-10-12
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
Max CVSS
5.0
EPSS Score
0.17%
Published
2000-05-12
Updated
2008-09-05
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
Max CVSS
5.0
EPSS Score
75.85%
Published
2000-05-11
Updated
2018-10-30
The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability.
Max CVSS
5.0
EPSS Score
1.58%
Published
2000-05-25
Updated
2018-10-12
The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announcement requests to the master browse tables, aka the "HostAnnouncement Flooding" or "HostAnnouncement Frame" vulnerability.
Max CVSS
5.0
EPSS Score
1.58%
Published
2000-05-25
Updated
2018-10-12
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.
Max CVSS
5.0
EPSS Score
0.26%
Published
2000-06-08
Updated
2018-10-12