Microsoft: >> Windows Nt >> 4.0 Security Vulnerabilities
The installer for BackOffice Server includes account names and passwords in a setup file (reboot.ini) which is not deleted.
CVSS Score
2.1
EPSS Score
0.048
Published
1999-02-12
In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash value.
CVSS Score
7.5
EPSS Score
0.057
Published
1999-02-08
Windows NT 4.0 beta allows users to read and delete shares.
CVSS Score
10.0
EPSS Score
0.117
Published
1999-01-19
The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user.
CVSS Score
7.5
EPSS Score
0.038
Published
1999-01-05
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
CVSS Score
10.0
EPSS Score
0.134
Published
1999-01-01
The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.
CVSS Score
4.6
EPSS Score
0.003
Published
1999-01-01
Windows NT automatically logs in an administrator upon rebooting.
CVSS Score
7.2
EPSS Score
0.004
Published
1999-01-01
A system-critical Windows NT file or directory has inappropriate permissions.
CVSS Score
10.0
EPSS Score
0.026
Published
1999-01-01
Windows NT is not using a password filter utility, e.g. PASSFILT.DLL.
CVSS Score
10.0
EPSS Score
0.117
Published
1999-01-01
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories.
CVSS Score
10.0
EPSS Score
0.134
Published
1999-01-01