National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:microsoft:windows_95:-:sp1
There are 52 matching records.
Displaying matches 21 through 40.
Vuln ID Summary CVSS Severity
CVE-2000-0979

File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability.

Published: December 19, 2000; 12:00:00 AM -05:00
    V2: 6.4 MEDIUM
CVE-2000-0980

NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the network.

Published: December 19, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-1003

NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash.

Published: December 11, 2000; 12:00:00 AM -05:00
    V2: 2.6 LOW
CVE-2000-0742

The IPX protocol implementation in Microsoft Windows 95 and 98 allows remote attackers to cause a denial of service by sending a ping packet with a source IP address that is a broadcast address, aka the "Malformed IPX Ping Packet" vulnerability.

Published: October 20, 2000; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-2000-1079

Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers to modify dynamic NetBIOS name cache entries via a spoofed Browse Frame Request in a unicast or UDP broadcast datagram.

Published: August 29, 2000; 12:00:00 AM -04:00
    V2: 7.5 HIGH
CVE-2000-0612

Windows 95 and Windows 98 do not properly process spoofed ARP packets, which allows remote attackers to overwrite static entries in the cache table.

Published: June 29, 2000; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-1999-0590

A system does not present an appropriate legal message or warning to a user who is accessing it.

Published: June 01, 2000; 12:00:00 AM -04:00
    V2: 10.0 HIGH
CVE-2000-0404

The CIFS Computer Browser service allows remote attackers to cause a denial of service by sending a ResetBrowser frame to the Master Browser, aka the "ResetBrowser Frame" vulnerability.

Published: May 25, 2000; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-2000-0305

Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability.

Published: May 19, 2000; 12:00:00 AM -04:00
    V2: 7.8 HIGH
CVE-2000-0347

Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name.

Published: May 02, 2000; 12:00:00 AM -04:00
    V2: 5.0 MEDIUM
CVE-2000-0168

Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Device in Path Name" vulnerability.

Published: March 04, 2000; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-2000-0155

Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.

Published: February 18, 2000; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-2000-0129

Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

Published: February 04, 2000; 12:00:00 AM -05:00
    V2: 2.1 LOW
CVE-1999-1104

Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled, which allows local users to gain privileges by decrypting the passwords.

Published: December 31, 1999; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-1105

Windows 95, when Remote Administration and File Sharing for NetWare Networks is enabled, creates a share (C$) when an administrator logs in remotely, which allows remote attackers to read arbitrary files by mapping the network drive.

Published: December 31, 1999; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-0975

The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

Published: December 10, 1999; 12:00:00 AM -05:00
    V2: 4.6 MEDIUM
CVE-1999-0387

A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords.

Published: November 29, 1999; 12:00:00 AM -05:00
    V2: 7.8 HIGH
CVE-2000-0330

The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.

Published: November 12, 1999; 12:00:00 AM -05:00
    V2: 7.6 HIGH
CVE-1999-0749

Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument.

Published: August 16, 1999; 12:00:00 AM -04:00
    V2: 2.6 LOW
CVE-1999-0918

Denial of service in various Windows systems via malformed, fragmented IGMP packets.

Published: July 03, 1999; 12:00:00 AM -04:00
    V2: 7.8 HIGH