VYPR

Windows Server 2008

by Microsoft

CVEs (2,628)

  • CVE-2013-1275HigFeb 13, 2013
    risk 0.46cvss 7.0epss 0.01

    Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents…

  • CVE-2013-1265HigFeb 13, 2013
    risk 0.46cvss 7.0epss 0.01

    Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents…

  • CVE-2013-1253HigFeb 13, 2013
    risk 0.46cvss 7.0epss 0.01

    Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents…

  • CVE-2011-0096MedJan 31, 2011
    risk 0.46cvss 6.1epss 0.47

    The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for content blocks in a document,…

  • CVE-2009-2516HigOct 14, 2009
    risk 0.46cvss 7.1epss 0.01

    The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly validate data sent from user mode, which allows local users to gain privileges via a crafted PE .exe file that triggers a NULL pointer…

  • CVE-2017-0038MedFeb 20, 2017
    risk 0.45cvss 5.5epss 0.82

    gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive…

  • CVE-2010-0488MedMar 31, 2010
    risk 0.45cvss 6.5epss 0.29

    Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site, aka "Post Encoding Information Disclosure…

  • CVE-2023-35629MedDec 12, 2023
    risk 0.44cvss 6.8epss 0.01

    Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability

  • CVE-2023-36697MedOct 10, 2023
    risk 0.44cvss 6.8epss 0.02

    Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

  • CVE-2023-35332MedJul 11, 2023
    risk 0.44cvss 6.8epss 0.00

    Windows Remote Desktop Protocol Security Feature Bypass

  • CVE-2023-32055MedJul 11, 2023
    risk 0.44cvss 6.7epss 0.00

    Active Template Library Elevation of Privilege Vulnerability

  • CVE-2023-32043MedJul 11, 2023
    risk 0.44cvss 6.8epss 0.00

    Windows Remote Desktop Security Feature Bypass Vulnerability

  • CVE-2023-24932MedMay 9, 2023
    risk 0.44cvss 6.7epss 0.11

    Secure Boot Security Feature Bypass Vulnerability

  • CVE-2023-21694MedFeb 14, 2023
    risk 0.44cvss 6.8epss 0.01

    Windows Fax Service Remote Code Execution Vulnerability

  • CVE-2023-21563MedJan 10, 2023
    risk 0.44cvss 6.8epss 0.02

    BitLocker Security Feature Bypass Vulnerability

  • CVE-2019-0713MedJun 12, 2019
    risk 0.44cvss 6.8epss 0.02

    A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system,…

  • CVE-2018-3639MedMay 22, 2018
    risk 0.44cvss 5.5epss 0.61

    Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis,…

  • CVE-2017-8628MedSep 13, 2017
    risk 0.44cvss 6.8epss 0.02

    Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".

  • CVE-2017-0244MedMay 12, 2017
    risk 0.44cvss 6.7epss 0.02

    The kernel in Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows locally authenticated attackers to gain privileges via a crafted application, or in Windows 7 for x64-based systems, cause denial of service, aka "Windows Kernel Elevation of Privilege Vulnerability."

  • CVE-2016-7257MedDec 20, 2016
    risk 0.44cvss 6.5epss 0.23

    The GDI component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office for Mac 2011, and Office 2016 for Mac allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "GDI Information Disclosure…

Page 49 of 132