Listening TCP ports are sequentially allocated, allowing spoofing attacks.
Max CVSS
6.4
EPSS Score
0.24%
Published
1997-07-01
Updated
2022-08-17
Buffer overflow in Microsoft Phone Dialer (dialer.exe), via a malformed dialer entry in the dialer.ini file.
Max CVSS
6.2
EPSS Score
0.04%
Published
1999-07-29
Updated
2018-10-12
Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed packets, which causes the server to slow down and fill the event logs with error messages.
Max CVSS
6.4
EPSS Score
0.50%
Published
1998-05-09
Updated
2016-10-18
The (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs within the CryptoAPI for Microsoft products including Microsoft Windows 98 through XP, Office for Mac, Internet Explorer for Mac, and Outlook Express for Mac, do not properly verify the Basic Constraints of intermediate CA-signed X.509 certificates, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack for SSL sessions, as originally reported for Internet Explorer and IIS.
Max CVSS
6.8
EPSS Score
14.97%
Published
2002-10-04
Updated
2024-02-09
Heap-based buffer overflow in Microsoft Windows allows user-assisted remote attackers to have an unknown impact via a crafted .HLP file.
Max CVSS
6.8
EPSS Score
21.03%
Published
2007-04-10
Updated
2017-10-11
Race condition in the Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft Windows NT 4.0 allows local users to modify memory and gain privileges via the temporary \Device\PhysicalMemory section handle, a related issue to CVE-2007-1206.
Max CVSS
6.9
EPSS Score
0.04%
Published
2007-04-11
Updated
2018-10-16
6 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!