VYPR

Windows 2000

by Microsoft

CVEs (522)

  • CVE-2007-1912Apr 10, 2007
    risk 0.04cvss epss 0.14

    Heap-based buffer overflow in Microsoft Windows allows user-assisted remote attackers to have an unknown impact via a crafted .HLP file.

  • CVE-2006-5758Nov 6, 2006
    risk 0.04cvss epss 0.06

    The Graphics Rendering Engine in Microsoft Windows 2000 through 2000 SP4 and Windows XP through SP2 maps GDI Kernel structures on a global shared memory section that is mapped with read-only permissions, but can be remapped by other processes as read-write, which allows local…

  • CVE-2006-3444Aug 9, 2006
    risk 0.04cvss epss 0.16

    Unspecified vulnerability in the kernel in Microsoft Windows 2000 SP4, probably a buffer overflow, allows local users to obtain privileges via unspecified vectors involving an "unchecked buffer."

  • CVE-2005-4717Dec 31, 2005
    risk 0.04cvss epss 0.19

    Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client crash) via a certain combination of a malformed HTML file and a CSS file that…

  • CVE-2005-2122Oct 21, 2005
    risk 0.04cvss epss 0.43

    Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to execute arbitrary commands via a shortcut (.lnk) file with long font properties that lead to a buffer overflow in the Client/Server Runtime Server Subsystem (CSRSS), a…

  • CVE-2005-2118Oct 21, 2005
    risk 0.04cvss epss 0.46

    Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote user-assisted attackers to execute arbitrary commands via a crafted shortcut (.lnk) file with long font properties that lead to a buffer overflow when the user views the file's properties…

  • CVE-2005-1984Aug 10, 2005
    risk 0.04cvss epss 0.55

    Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

  • CVE-2005-1208Jun 14, 2005
    risk 0.04cvss epss 0.47

    Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using…

  • CVE-2005-1191May 2, 2005
    risk 0.04cvss epss 0.20

    The Web View DLL (webvw.dll), as used in Windows Explorer on Windows 2000 systems, does not properly filter an apostrophe ("'") in the author name in a document, which allows attackers to execute arbitrary script via extra attributes when Web View constructs a mailto: link for…

  • CVE-2005-0050May 2, 2005
    risk 0.04cvss epss 0.47

    The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary…

  • CVE-2004-0201Aug 6, 2004
    risk 0.04cvss epss 0.45

    Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vulnerability than CVE-2003-1041.

  • CVE-2002-0862Oct 4, 2002
    risk 0.04cvss epss 0.19

    The (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs within the CryptoAPI for Microsoft products including Microsoft Windows 98 through XP, Office for Mac, Internet Explorer for Mac, and Outlook Express for Mac, do not properly…

  • CVE-2001-0348Jul 21, 2001
    risk 0.04cvss epss 0.30

    Microsoft Windows 2000 telnet service allows attackers to cause a denial of service (crash) via a long logon command that contains a backspace.

  • CVE-2001-0324May 3, 2001
    risk 0.04cvss epss 0.15

    Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a Java applet that opens a large number of UDP sockets, which prevents the host from establishing any additional UDP connections, and possibly causes a crash.

  • CVE-2000-0851Nov 14, 2000
    risk 0.04cvss epss 0.08

    Buffer overflow in the Still Image Service in Windows 2000 allows local users to gain additional privileges via a long WM_USER message, aka the "Still Image Service Privilege Escalation" vulnerability.

  • CVE-2000-0580Jun 30, 2000
    risk 0.04cvss epss 0.17

    Windows 2000 Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros to various TCP and UDP ports, which significantly increases the CPU utilization.

  • CVE-2000-0581Jun 30, 2000
    risk 0.04cvss epss 0.24

    Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash.

  • CVE-1999-0819Dec 1, 1999
    risk 0.04cvss epss 0.16

    NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.

  • CVE-1999-0875Aug 11, 1999
    risk 0.04cvss epss 0.18

    DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.

  • CVE-1999-0755May 27, 1999
    risk 0.04cvss epss 0.16

    Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option.

Page 9 of 27