CVSS:10.0(Critical)
A system does not present an appropriate legal message or warning to a user who is accessing it.
CVSS:10.0(Critical)
A system-critical Windows NT registry key has inappropriate permissions.
CVSS:7.5(High)
A filter in a router or firewall allows unusual fragmented packets.
CVSS:10.0(Critical)
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data.
CVSS:10.0(Critical)
A Windows NT file system is not NTFS.
CVSS:10.0(Critical)
There is a one-way or two-way trust relationship between Windows NT domains.
CVSS:10.0(Critical)
The HKEY_CLASSES_ROOT key in a Windows NT system has inappropriate, system-critical permissions.
CVSS:10.0(Critical)
The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions.
CVSS:10.0(Critical)
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys.
CVSS:10.0(Critical)
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories.
CVSS:7.5(High)
A Windows NT system's file audit policy does not log an event success or failure for security-critical files or directories.
CVSS:7.5(High)
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Chan...
CVSS:9.3(Critical)
.reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.
CVSS:10.0(Critical)
A router's configuration service or management interface (such as a web server or telnet) is configured to allow connections from arbitrary hosts.
CVSS:10.0(Critical)
Windows NT is not using a password filter utility, e.g. PASSFILT.DLL.
CVSS:10.0(Critical)
A URL for a WWW directory allows auto-indexing, which provides a list of all files in that directory if it does not contain an index.html file.
CVSS:10.0(Critical)
rpc.admind in Solaris is not running in a secure mode.
CVSS:10.0(Critical)
A Sendmail alias allows input to be piped to a program.
CVSS:10.0(Critical)
An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to become disabled.
CVSS:7.5(High)
The registry in Windows NT can be accessed remotely by users who are not administrators.
CVSS:10.0(Critical)
IIS has the #exec function enabled for Server Side Include (SSI) files.
CVSS:10.0(Critical)
A system-critical Windows NT file or directory has inappropriate permissions.
CVSS:10.0(Critical)
A system-critical Unix file or directory has inappropriate permissions.
CVSS:10.0(Critical)
Two or more Unix accounts have the same UID.