Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Windows_2000
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 517 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-04-20 | CVE-2000-0331 | Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability. | Terminal_server, Windows_2000, Windows_nt | N/A | ||
| 2000-04-20 | CVE-2000-0311 | The Windows 2000 domain controller allows a malicious user to modify Active Directory information by modifying an unprotected attribute, aka the "Mixed Object Access" vulnerability. | Windows_2000 | N/A | ||
| 2000-05-19 | CVE-2000-0305 | Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability. | Beos, Terminal_server, Windows_2000, Windows_95, Windows_98, Windows_nt | N/A | ||
| 2000-04-07 | CVE-2000-0298 | The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories. | Windows_2000 | N/A | ||
| 2000-03-30 | CVE-2000-0232 | Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. | Terminal_server, Windows_2000, Windows_nt | N/A | ||
| 1999-12-31 | CVE-1999-1358 | When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy file to be read-only. | Windows_2000, Windows_nt | N/A | ||
| 1999-12-01 | CVE-1999-0819 | NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it. | Windows_2000, Windows_nt | N/A | ||
| 1997-01-01 | CVE-1999-0562 | The registry in Windows NT can be accessed remotely by users who are not administrators. | Windows_2000, Windows_nt | N/A | ||
| 1999-01-01 | CVE-1999-0384 | The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content. | Office, Outlook, Project, Visual_basic, Windows_2000, Windows_nt | N/A | ||
| 1997-07-01 | CVE-1999-0153 | Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | Windows_2000, Windows_95, Windows_nt, Openserver | N/A |