Page 36 of 317 results (0.004 seconds)

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0

Web Extender Client (WEC) in Microsoft Office 2000, Windows 2000, and Windows Me does not properly process Internet Explorer security settings for NTLM authentication, which allows attackers to obtain NTLM credentials and possibly obtain the password, aka the "Web Client NTLM Authentication" vulnerability. • http://www.securityfocus.com/bid/2199 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-001 https://exchange.xforce.ibmcloud.com/vulnerabilities/5920 •

CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0

The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnerabilities. • http://www.securityfocus.com/bid/2065 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-095 https://exchange.xforce.ibmcloud.com/vulnerabilities/5673 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A140 •

CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1

The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities. • http://www.securityfocus.com/bid/2064 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-095 https://exchange.xforce.ibmcloud.com/vulnerabilities/5671 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A500 •

CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0

The default permissions for the SNMP Parameters registry key in Windows NT 4.0 allows remote attackers to read and possibly modify the SNMP community strings to obtain sensitive information or modify network configuration, aka one of the "Registry Permissions" vulnerabilities. • http://www.securityfocus.com/bid/2066 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-095 https://exchange.xforce.ibmcloud.com/vulnerabilities/5672 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A139 •

CVSS: 10.0EPSS: 97%CPEs: 2EXPL: 4

Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability. • https://www.exploit-db.com/exploits/16357 https://www.exploit-db.com/exploits/20460 http://www.securityfocus.com/bid/2048 http://www.stake.com/research/advisories/2000/a120400-1.txt https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-094 https://exchange.xforce.ibmcloud.com/vulnerabilities/5623 •