CVSS: 9.8EPSS: 21%CPEs: 4EXPL: 4CVE-2000-0979 – Microsoft Windows 9x/ME - Share Level Password Bypass
https://notcve.org/view.php?id=CVE-2000-0979
19 Dec 2000 — File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability. • https://www.exploit-db.com/exploits/20283 •
CVSS: 5.0EPSS: 7%CPEs: 4EXPL: 1CVE-2000-0980
https://notcve.org/view.php?id=CVE-2000-0980
19 Dec 2000 — NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network. • http://www.securityfocus.com/bid/1781 •
CVSS: 7.5EPSS: 13%CPEs: 5EXPL: 1CVE-2000-1039
https://notcve.org/view.php?id=CVE-2000-1039
19 Dec 2000 — Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without maintaining the connection state on the attacker host, aka the "NAPTHA" class of vulnerabilities. NOTE: this candidate may change significantly as the security community discusses the technical nature of NAPTHA and learns more about the affected applications. This candidate is at a higher level of abstraction tha... • http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0105.html •
CVSS: 6.2EPSS: 9%CPEs: 3EXPL: 0CVE-2000-1003
https://notcve.org/view.php?id=CVE-2000-1003
11 Dec 2000 — NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash. • http://www.securityfocus.com/archive/1/139511 •
CVSS: 7.5EPSS: 19%CPEs: 2EXPL: 0CVE-2000-0742
https://notcve.org/view.php?id=CVE-2000-0742
20 Oct 2000 — The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability. • http://www.securityfocus.com/bid/1544 •
CVSS: 7.5EPSS: 11%CPEs: 4EXPL: 0CVE-2000-1079
https://notcve.org/view.php?id=CVE-2000-1079
29 Aug 2000 — Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram. • http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0116.html •
CVSS: 7.5EPSS: 15%CPEs: 2EXPL: 0CVE-2000-0612
https://notcve.org/view.php?id=CVE-2000-0612
29 Jun 2000 — Windows 95 and Windows 98 do not properly process spoofed ARP packets, which allows remote attackers to overwrite static entries in the cache table. • http://www.securityfocus.com/bid/1406 •
CVSS: 7.5EPSS: 13%CPEs: 5EXPL: 0CVE-2000-0404
https://notcve.org/view.php?id=CVE-2000-0404
25 May 2000 — The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability. • http://www.microsoft.com/technet/support/kb.asp?ID=262694 •
CVSS: 7.8EPSS: 36%CPEs: 6EXPL: 1CVE-2000-0305 – Microsoft Windows - 'Jolt2.c' Denial of Service (MS00-029)
https://notcve.org/view.php?id=CVE-2000-0305
19 May 2000 — Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability. • https://www.exploit-db.com/exploits/214 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 39%CPEs: 2EXPL: 1CVE-2000-0347 – Microsoft Windows 95/98 - NetBIOS NULL Name
https://notcve.org/view.php?id=CVE-2000-0347
02 May 2000 — Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name. • https://www.exploit-db.com/exploits/19889 •