CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Microsoft : Security Vulnerabilities Published In 2000 (Denial Of Service)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2000-1227 DoS 2000-12-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back.
2 CVE-2000-1006 DoS 2000-12-11 2008-09-05
5.0
None Remote Low Not required None None Partial
Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.
3 CVE-2000-1003 DoS 2000-12-11 2008-09-05
2.6
None Remote High Not required None None Partial
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash.
4 CVE-2000-0983 DoS 2000-12-19 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft NetMeeting with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service (CPU utilization) via a sequence of null bytes to the NetMeeting port, aka the "NetMeeting Desktop Sharing" vulnerability.
5 CVE-2000-0929 DoS 2000-12-19 2008-09-05
5.0
None Remote Low Not required None None Partial
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
6 CVE-2000-0858 DoS 2000-11-14 2008-09-05
5.0
None Remote Low Not required None None Partial
Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability.
7 CVE-2000-0849 DoS 2000-11-14 2008-09-05
2.6
None Remote High Not required None None Partial
Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability.
8 CVE-2000-0830 DoS 2000-11-14 2008-09-05
5.0
None Remote Low Not required None None Partial
annclist.exe in webTV for Windows allows remote attackers to cause a denial of service by via a large, malformed UDP packet to ports 22701 through 22705.
9 CVE-2000-0771 DoS 2000-10-20 2008-09-05
2.1
None Local Low Not required None None Partial
Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability.
10 CVE-2000-0756 DoS 2000-10-20 2008-09-05
5.0
None Remote Low Not required None None Partial
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service.
11 CVE-2000-0742 DoS 2000-10-20 2008-09-05
5.0
None Remote Low Not required None None Partial
The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
12 CVE-2000-0709 DoS 2000-10-20 2008-09-05
5.0
None Remote Low Not required None None Partial
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in some components by requesting a URL whose name includes a standard DOS device name.
13 CVE-2000-0673 DoS 2000-07-27 2008-09-05
5.0
None Remote Low Not required None None Partial
The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name Server Protocol Spoofing" vulnerability.
14 CVE-2000-0631 DoS 2000-07-14 2008-09-05
5.0
None Remote Low Not required None None Partial
An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability.
15 CVE-2000-0581 DoS 2000-06-30 2008-09-10
5.0
None Remote Low Not required None None Partial
Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.
16 CVE-2000-0580 DoS 2000-06-30 2008-09-10
5.0
None Remote Low Not required None None Partial
Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.
17 CVE-2000-0544 DoS 2000-06-05 2008-09-10
5.0
None Remote Low Not required None None Partial
Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.
18 CVE-2000-0524 DoS 2000-06-05 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
19 CVE-2000-0495 DoS 2000-05-30 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.
20 CVE-2000-0415 DoS Overflow 2000-05-12 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
21 CVE-2000-0408 DoS 2000-05-11 2008-09-10
5.0
None Remote Low Not required None None Partial
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
22 CVE-2000-0404 DoS 2000-05-25 2008-09-10
5.0
None Remote Low Not required None None Partial
The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability.
23 CVE-2000-0403 DoS 2000-05-25 2008-09-10
5.0
None Remote Low Not required None None Partial
The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announcement requests to the master browse tables, aka the "HostAnnouncement Flooding" or "HostAnnouncement Frame" vulnerability.
24 CVE-2000-0377 DoS 2000-06-08 2008-09-10
5.0
None Remote Low Not required None None Partial
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.
25 CVE-2000-0347 DoS 2000-05-02 2008-09-10
5.0
None Remote Low Not required None None Partial
Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name.
26 CVE-2000-0331 DoS Overflow 2000-04-20 2008-09-10
5.0
None Remote Low Not required None None Partial
Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability.
27 CVE-2000-0305 DoS 2000-05-19 2008-09-10
5.0
None Remote Low Not required None None Partial
Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability.
28 CVE-2000-0304 DoS 2000-05-10 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimited .HTR Request" vulnerability.
29 CVE-2000-0260 DoS Exec Code Overflow 2000-04-14 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server-Side Component" vulnerability.
30 CVE-2000-0258 DoS 2000-04-12 2008-09-10
5.0
None Remote Low Not required None None Partial
IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability.
31 CVE-2000-0232 DoS 2000-03-30 2008-09-10
2.1
None Local Low Not required None None Partial
Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request.
32 CVE-2000-0228 DoS 2000-03-17 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to halt, aka the "Malformed Media License Request" Vulnerability.
33 CVE-2000-0226 DoS Overflow 2000-03-20 2008-09-10
5.0
None Remote Low Not required None None Partial
IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability."
34 CVE-2000-0211 DoS 2000-02-23 2008-09-10
5.0
None Remote Low Not required None None Partial
The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.
35 CVE-2000-0200 DoS Exec Code Overflow 2000-03-06 2008-09-10
5.1
User Remote High Not required Partial Partial Partial
Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art library) file, aka the "Clip Art Buffer Overrun" vulnerability.
36 CVE-2000-0168 DoS 2000-03-04 2008-09-10
5.0
None Remote Low Not required None None Partial
Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Device in Path Name" vulnerability.
37 CVE-2000-0167 DoS 2000-02-15 2008-09-10
2.1
None Local Low Not required None None Partial
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
38 CVE-2000-0129 DoS Overflow 2000-02-04 2008-09-10
2.1
None Local Low Not required None None Partial
Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.
39 CVE-2000-0115 DoS 2000-01-21 2008-09-10
5.0
None Remote Low Not required None None Partial
IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page.
40 CVE-2000-0053 DoS 2000-01-04 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.
41 CVE-1999-1579 DoS 2000-12-14 2008-09-10
5.0
None Remote Low Not required None None Partial
The Cenroll ActiveX control (xenroll.dll) for Terminal Server Editions of Windows NT 4.0 and Windows NT Server 4.0 before SP6 allows remote attackers to cause a denial of service (resource consumption) by creating a large number of arbitrary files on the target machine.
42 CVE-1999-0980 DoS 2000-05-16 2008-09-09
5.0
None Remote Low Not required None None Partial
Windows NT Service Control Manager (SCM) allows remote attackers to cause a denial of service via a malformed argument in a resource enumeration request.
Total number of vulnerabilities : 42   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.