Spyware Doctor
Spyware Doctor with AntiVirus
PC Tools AntiVirus
PC Tools Internet Security
PC Tools Firewall Plus
ThreatFire
Spam Monitor
iAntiVirus for Mac OS X
PC Tools Security for Netbooks
Registry Mechanic
Desktop Maestro
File Recover
Privacy Guardian
PC Tools Disk Suite
Help me choose
Flaw in Windows Function Could Allow Denial of Service
New
A security flaw exists in a Windows NT 4.0 Server file management function that can cause a denial of service vulnerability.
A security flaw exists in a Windows NT 4.0 Server file management function that can cause a denial of service vulnerability.
RPC Endpoint Mapper Denial of Service
New
A denial of service vulnerability exists in the RPC endpoint mapper which could allow a malicious user to cause the RPC service to fail by issuing a malformed request.
A denial of service vulnerability exists in the RPC endpoint mapper which could allow a malicious user to cause the RPC service to fail by issuing a malformed request.
Malformed PPTP Packet Stream Vulnerability
New
A security vulnerability exists in Microsoft® Windows NT® 4.0 servers that provide secure remote sessions which could allow an attacker to prevent an affected machine from providing useful service.
A security vulnerability exists in Microsoft® Windows NT® 4.0 servers that provide secure remote sessions which could allow an attacker to prevent an affected machine from providing useful service.
NTLMSSP Privilege Elevation Vulnerability
New
A security vulnerability exists in Microsoft® Windows NT 4.0 which could allow a locally logged on user to grant herself administrator level privileges.
A security vulnerability exists in Microsoft® Windows NT 4.0 which could allow a locally logged on user to grant herself administrator level privileges.
Winsock Mutex Vulnerability
New
A security vulnerability exists in Microsoft® Windows NT 4.0 which could allow a malicious user to run a special program to disable an affected computer’s network functionality.
A security vulnerability exists in Microsoft® Windows NT 4.0 which could allow a malicious user to run a special program to disable an affected computer’s network functionality.
Terminal Server Login Buffer Overflow Vulnerability
A security vulnerability exists in Microsoft® Windows NT 4.0 Terminal Server which could allow a malicious user to cause the Terminal Server to fail or, in certain instances, to execute hostile code on the server.
A security vulnerability exists in Microsoft® Windows NT 4.0 Terminal Server which could allow a malicious user to cause the Terminal Server to fail or, in certain instances, to execute hostile code on the server.
Remote Registry Access Authentication Vulnerability
A security vulnerability exists in Microsoft® Windows NT 4.0 that under certain conditions could be used to cause a Windows NT 4.0 machine to fail.
A security vulnerability exists in Microsoft® Windows NT 4.0 that under certain conditions could be used to cause a Windows NT 4.0 machine to fail.
OffloadModExpo Registry Permissions Vulnerability
On a shared computer, it may be possible for a malicious user to interactively log on to the computer and compromise the security of the cryptographic keys of other users who subsequently log on to the same computer.
On a shared computer, it may be possible for a malicious user to interactively log on to the computer and compromise the security of the cryptographic keys of other users who subsequently log on to the same computer.
Registry Permissions Vulnerability
Microsoft has released a tool that installs tighter permissions on three sets of registry values in Windows NT 4.0. The default permissions could allow a malicious user to gain additional privileges on an affected machine.
Microsoft has released a tool that installs tighter permissions on three sets of registry values in Windows NT 4.0. The default permissions could allow a malicious user to gain additional privileges on an affected machine.
Recycle Bin Creation Vulnerability
On a shared computer, it may be possible for a user to create a folder in the %SystemRoot\Recycler folder that is then assigned to another user based on the Security Identifier (SID) number. If you do this, a malicious user may assign themselves extended rights to the newly created Recycle Bin folder before it is assigned to another user. This allows someone the ability to insert files into a user's Recycle Bin or permanently delete a user's files located in that specific Recycle Bin.
On a shared computer, it may be possible for a user to create a folder in the %SystemRoot\Recycler folder that is then assigned to another user based on the Security Identifier (SID) number. If you do this, a malicious user may assign themselves extended rights to the newly created Recycle Bin folder before it is assigned to another user. This allows someone the ability to insert files into a user's Recycle Bin or permanently delete a user's files located in that specific Recycle Bin.
RDISK Registry Enumeration File Vulnerability
The RDISK utility creates a temporary file during execution that can contain security-sensitive information, but does not appropriately restrict access to it. Under certain conditions, it could be possible for a malicious user to read the file as it was being created.
The RDISK utility creates a temporary file during execution that can contain security-sensitive information, but does not appropriately restrict access to it. Under certain conditions, it could be possible for a malicious user to read the file as it was being created.
Spoofed LPC Port Request Vulnerability
On a computer that is running Windows NT 4.0, it is possible for a malicious user to use a program that makes a specific local procedure call (LPC) to impersonate any other user who has local logon privileges and run any program, including programs that can run in the LocalSystem context.
On a computer that is running Windows NT 4.0, it is possible for a malicious user to use a program that makes a specific local procedure call (LPC) to impersonate any other user who has local logon privileges and run any program, including programs that can run in the LocalSystem context.
Malformed Security Identifier Request Vulnerability
A vulnerability exists in the LsaLookupSids function that could allow a malicious user to cause a Windows NT machine to stop responding to requests for service.
A vulnerability exists in the LsaLookupSids function that could allow a malicious user to cause a Windows NT machine to stop responding to requests for service.
Syskey Keystream Reuse Vulnerability
A vulnerability exists in Syskey, a utility that provides additional protection for Microsoft® Windows NT® password databases. The vulnerability allows a particular cryptanalytic attack to be effective against Syskey, significantly reducing the strength of the protection it offers.
A vulnerability exists in Syskey, a utility that provides additional protection for Microsoft® Windows NT® password databases. The vulnerability allows a particular cryptanalytic attack to be effective against Syskey, significantly reducing the strength of the protection it offers.
Malformed Resource Enumeration Argument Vulnerability
A vulnerability exists when a malformed argument is supplied to a resource enumeration request that could cause a Windows NT machine to stop responding to requests for services.
A vulnerability exists when a malformed argument is supplied to a resource enumeration request that could cause a Windows NT machine to stop responding to requests for services.
Malformed Spooler Request Vulnerability
A vulnerability exists that could allow a user to cause the print spooler service to crash, or to run arbitrary code on a Windows NT machine.
A vulnerability exists that could allow a user to cause the print spooler service to crash, or to run arbitrary code on a Windows NT machine.
TCP Initial Sequence Number Randomness
The ISNs used in TCP/IP sessions should be as random as possible in order to prevent attacks such as IP address spoofing and session hijacking. This patch improves the randomness of the Windows NT 4.0 TCP/IP ISN generation, providing 15 bits of entropy.
The ISNs used in TCP/IP sessions should be as random as possible in order to prevent attacks such as IP address spoofing and session hijacking. This patch improves the randomness of the Windows NT 4.0 TCP/IP ISN generation, providing 15 bits of entropy.
RASMAN Security Descriptor Vulnerability
A vulnerability exists that could enable a user to execute arbitrary code on a Windows NT machine under certain conditions, due to an inappropriate ACE in the Remote Access Connection Manager DACL.
A vulnerability exists that could enable a user to execute arbitrary code on a Windows NT machine under certain conditions, due to an inappropriate ACE in the Remote Access Connection Manager DACL.
Spoofed Route Pointer Vulnerability
A vulnerability exists in Microsoft® Windows® 95, 98 and Windows NT® 4.0 that could allow source routing to be performed, even if it has ostensibly been disabled.
A vulnerability exists in Microsoft® Windows® 95, 98 and Windows NT® 4.0 that could allow source routing to be performed, even if it has ostensibly been disabled.
Windows NT 4.0 Does Not Delete Unattended Installation File
When an unattended installation of Microsoft® Windows NT® 4.0 completes, a copy of the file that contains installation parameters remains on the hard drive. Depending on the method that was used to perform the installation and the specific installation parameters that were selected, the file could contain sensitive information, potentially including the local Administrator password.
When an unattended installation of Microsoft® Windows NT® 4.0 completes, a copy of the file that contains installation parameters remains on the hard drive. Depending on the method that was used to perform the installation and the specific installation parameters that were selected, the file could contain sensitive information, potentially including the local Administrator password.
Fragmented IGMP Packet Vulnerability
A vulnerability exists in the TCP/IP stack implementations of Microsoft® Windows® 95, Windows 98® and Windows NT® 4.0. Fragmented IGMP packets can cause a variety of problems up to and including causing the machine to crash.
A vulnerability exists in the TCP/IP stack implementations of Microsoft® Windows® 95, Windows 98® and Windows NT® 4.0. Fragmented IGMP packets can cause a variety of problems up to and including causing the machine to crash.
Malformed Dialer Entry Vulnerability
A vulnerability exists in the Phone Dialer accessory in Microsoft® Windows NT® which could be used to run arbitrary code in a user's security context on Windows NT systems.
A vulnerability exists in the Phone Dialer accessory in Microsoft® Windows NT® which could be used to run arbitrary code in a user's security context on Windows NT systems.
Unprotected IOCTLs Vulnerability
A vulnerability exists that could allow denial of service attacks against a Microsoft® Windows NT® workstation, server or terminal server. An unprivileged program can disable the local mouse or keyboard on a server or workstation, and disable the console mouse or keyboard on a terminal server.
A vulnerability exists that could allow denial of service attacks against a Microsoft® Windows NT® workstation, server or terminal server. An unprivileged program can disable the local mouse or keyboard on a server or workstation, and disable the console mouse or keyboard on a terminal server.
Malformed Image Header Vulnerability
A vulnerability exists that could allow denial of service attacks against Microsoft® Windows NT® servers, workstations, and terminal servers. If an executable file with a specially-malformed image header is executed, it will cause a system failure.
A vulnerability exists that could allow denial of service attacks against Microsoft® Windows NT® servers, workstations, and terminal servers. If an executable file with a specially-malformed image header is executed, it will cause a system failure.
Malformed LSA Request Vulnerability
A vulnerability exists that poses a denial of service threat to Microsoft® Windows NT® servers and workstations. A malformed request to the Local Security Authority (LSA) service will causes the service to stop responding, requiring the computer to be restarted.
A vulnerability exists that poses a denial of service threat to Microsoft® Windows NT® servers and workstations. A malformed request to the Local Security Authority (LSA) service will causes the service to stop responding, requiring the computer to be restarted.
RAS and RRAS Password Vulnerability
A vulnerability exists in the Microsoft® Windows NT® Remote Access Service (RAS) and Routing and Remote Access Service (RRAS) clients, in which a user's password is cached even if the user de-selects the "Save password" option.
A vulnerability exists in the Microsoft® Windows NT® Remote Access Service (RAS) and Routing and Remote Access Service (RRAS) clients, in which a user's password is cached even if the user de-selects the "Save password" option.
Malformed Phonebook Entry Vulnerability
A vulnerability exists in the Microsoft® Windows NT® remote access service (RAS) client which could allow a denial-of-service attack to be mounted against the client machine or, under certain conditions, could allow arbitrary code to be executed on it.
A vulnerability exists in the Microsoft® Windows NT® remote access service (RAS) client which could allow a denial-of-service attack to be mounted against the client machine or, under certain conditions, could allow arbitrary code to be executed on it.
Windows NT Screen Saver Vulnerability
A vulnerability exists in all versions of Microsoft® Windows NT® operating system, which could allow a user to gain administrative privileges on a computer by running a malicious screen saver program.
A vulnerability exists in all versions of Microsoft® Windows NT® operating system, which could allow a user to gain administrative privileges on a computer by running a malicious screen saver program.
Windows NT KnownDLLs Vulnerability
A vulnerability exists affecting all versions of Microsoft® Windows NT® operating system, which could allow a user to gain administrative privileges on a computer. In most common usage scenarios, this vulnerability presents itself on workstations, terminal servers, and other systems that allow non-administrative users to interactively log on.
A vulnerability exists affecting all versions of Microsoft® Windows NT® operating system, which could allow a user to gain administrative privileges on a computer. In most common usage scenarios, this vulnerability presents itself on workstations, terminal servers, and other systems that allow non-administrative users to interactively log on.
Authentication Processing Error in Windows NT 4.0 SP4
A logic error exists in Service Pack 4 for Windows NT 4.0 that could, under certain conditions, allow a user to log on interactively and connect to network shares using a blank password.
A logic error exists in Service Pack 4 for Windows NT 4.0 that could, under certain conditions, allow a user to log on interactively and connect to network shares using a blank password.
Named Pipes Over RPC Issue
A vulnerability exists in the way Windows NT ® 4.0 handles named pipes over the Remote Procedure Call (RPC) services. An attacker could create a denial of service situation on a Windows NT 4.0 system by opening multiple named pipe connections to RPC services and sending random data.
A vulnerability exists in the way Windows NT ® 4.0 handles named pipes over the Remote Procedure Call (RPC) services. An attacker could create a denial of service situation on a Windows NT 4.0 system by opening multiple named pipe connections to RPC services and sending random data.
RPC Spoofing Denial of Service on Windows NT
A security vulnerability exists in the way that Microsoft® Windows NT® processes bad Remote Procedure Call (RPC) datagrams which would allow a malicious attacker to send a RPC datagram to a server and spoof the return address so that the datagram appears to have come from another server. This tricks the two servers into erroneously sending RPC error messages to each other causing a temporary loop resulting in high CPU utilization and network bandwidth until the bad packets are discarded.
A security vulnerability exists in the way that Microsoft® Windows NT® processes bad Remote Procedure Call (RPC) datagrams which would allow a malicious attacker to send a RPC datagram to a server and spoof the return address so that the datagram appears to have come from another server. This tricks the two servers into erroneously sending RPC error messages to each other causing a temporary loop resulting in high CPU utilization and network bandwidth until the bad packets are discarded.
Windows NT Privilege Elevation Attack
A program called SecHole (Sechole.exe) is available on the Internet that exploits a privilege elevation vulnerability in the Windows NT operating system. The program performs a sophisticated set of steps to allow a non-administrative user who is logged on locally (at the console of a system) to gain debug-level access on a system process.
A program called SecHole (Sechole.exe) is available on the Internet that exploits a privilege elevation vulnerability in the Windows NT operating system. The program performs a sophisticated set of steps to allow a non-administrative user who is logged on locally (at the console of a system) to gain debug-level access on a system process.
Disabling Creation of Local Groups on a Domain by Non-Administrative Users
The default Microsoft® Windows NT® user rights allow non-administrative users to create domain local groups. Domain local groups reside only on the Domain Controllers, which share a single security account manager (SAM).
The default Microsoft® Windows NT® user rights allow non-administrative users to create domain local groups. Domain local groups reside only on the Domain Controllers, which share a single security account manager (SAM).
