The OS/2 or POSIX subsystem in NT is enabled.

A component service related to NIS+ is running.

The rsh/rlogin service is running.

The netstat service is running, which provides sensitive information to remote attackers.

The UUCP service is running.

The Gopher service is running.

The chargen service is running.

The daytime service is running.

The systat service is running.

The discard service is running.

The echo service is running.

The RPC portmapper service is running.

The NT Alerter and Messenger services are running.

The ident/identd service is running.

The rpc.rquotad service is running.

The rstat/rstatd service is running.

The rexec service is running.

The rpc.sprayd service is running.

A system-critical Windows NT registry key has an inappropriate value.

In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc.

A network intrusion detection system (IDS) does not properly reassemble fragmented packets.

A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.

A network intrusion detection system (IDS) does not verify the checksum on a packet.

A network intrusion detection system (IDS) does not properly handle packets with improper sequence numbers.

A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.