A Windows NT system does not restrict access to removable media drives such as a floppy disk drive or CDROM drive.
CVE-1999-0593
The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.
CVE-1999-0592
The Logon box of a Windows NT system displays the name of the last user who logged in.
CVE-1999-0591
An event log in Windows NT has inappropriate access permissions.
CVE-1999-0590
A system does not present an appropriate legal message or warning to a user who is accessing it.
CVE-1999-0589
A system-critical Windows NT registry key has inappropriate permissions.
CVE-1999-0588
A filter in a router or firewall allows unusual fragmented packets.
CVE-1999-0587
A WWW server is not running in a restricted file system, e.g. through a chroot, thus allowing access to system-critical data.
CVE-1999-0586
A network service is running on a nonstandard port.
CVE-1999-0585
A Windows NT administrator account has the default name of Administrator.