Microsoft : Security Vulnerabilities Published In 2000 (Denial of service)
Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause a denial of service (unavailable connections) by sending multiple SMB SMBnegprots requests but not reading the response that is sent back.
Max Base Score
5.0
Published
2000-12-31
Updated
2019-04-30
EPSS
0.59%
Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.
Max Base Score
5.0
Published
2000-12-11
Updated
2020-04-09
EPSS
74.15%
NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash.
Max Base Score
2.6
Published
2000-12-11
Updated
2017-10-10
EPSS
0.67%
Microsoft NetMeeting with Remote Desktop Sharing enabled allows remote attackers to cause a denial of service (CPU utilization) via a sequence of null bytes to the NetMeeting port, aka the "NetMeeting Desktop Sharing" vulnerability.
Max Base Score
5.0
Published
2000-12-19
Updated
2018-10-12
EPSS
10.76%
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability.
Max Base Score
5.0
Published
2000-12-19
Updated
2018-10-12
EPSS
0.40%
Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability.
Max Base Score
5.0
Published
2000-11-14
Updated
2017-10-10
EPSS
1.90%
Race condition in Microsoft Windows Media server allows remote attackers to cause a denial of service in the Windows Media Unicast Service via a malformed request, aka the "Unicast Service Race Condition" vulnerability.
Max Base Score
2.6
Published
2000-11-14
Updated
2018-10-12
EPSS
0.61%
annclist.exe in webTV for Windows allows remote attackers to cause a denial of service by via a large, malformed UDP packet to ports 22701 through 22705.
Max Base Score
5.0
Published
2000-11-14
Updated
2018-10-12
EPSS
5.03%
Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability.
Max Base Score
2.1
Published
2000-10-20
Updated
2018-10-12
EPSS
0.05%
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial of service.
Max Base Score
5.0
Published
2000-10-20
Updated
2008-09-05
EPSS
0.19%
The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.
Max Base Score
5.0
Published
2000-10-20
Updated
2018-10-12
EPSS
1.87%
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.
Max Base Score
5.0
Published
2000-10-20
Updated
2017-07-12
EPSS
96.51%
The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in some components by requesting a URL whose name includes a standard DOS device name.
Max Base Score
5.0
Published
2000-10-20
Updated
2008-09-05
EPSS
96.42%
The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name Server Protocol Spoofing" vulnerability.
Max Base Score
5.0
Published
2000-07-27
Updated
2018-10-12
EPSS
5.91%
An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability.
Max Base Score
5.0
Published
2000-07-14
Updated
2018-10-30
EPSS
2.38%
Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.
Max Base Score
5.0
Published
2000-06-30
Updated
2008-09-10
EPSS
88.54%
Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.
Max Base Score
5.0
Published
2000-06-30
Updated
2008-09-10
EPSS
4.25%
Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.
Max Base Score
5.0
Published
2000-06-05
Updated
2008-09-10
EPSS
0.29%
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
Max Base Score
5.0
Published
2000-06-05
Updated
2020-04-02
EPSS
0.19%
Microsoft Windows Media Encoder allows remote attackers to cause a denial of service via a malformed request, aka the "Malformed Windows Media Encoder Request" vulnerability.
Max Base Score
5.0
Published
2000-05-30
Updated
2018-10-12
EPSS
24.10%
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
Max Base Score
5.0
Published
2000-05-12
Updated
2008-09-05
EPSS
0.17%
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.
Max Base Score
5.0
Published
2000-05-11
Updated
2018-10-30
EPSS
94.27%
The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability.
Max Base Score
5.0
Published
2000-05-25
Updated
2018-10-12
EPSS
14.14%
The CIFS Computer Browser service on Windows NT 4.0 allows a remote attacker to cause a denial of service by sending a large number of host announcement requests to the master browse tables, aka the "HostAnnouncement Flooding" or "HostAnnouncement Frame" vulnerability.
Max Base Score
5.0
Published
2000-05-25
Updated
2018-10-12
EPSS
14.14%
The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.
Max Base Score
5.0
Published
2000-06-08
Updated
2018-10-12
EPSS
0.26%