VYPR

Windows Server 2003

by Microsoft

Source repositories

CVEs (4,742)

  • CVE-2010-0485HigJun 8, 2010
    risk 0.51cvss 7.8epss 0.01

    The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which allows…

  • CVE-2009-0082HigMar 10, 2009
    risk 0.51cvss 7.8epss 0.01

    The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate handles, which allows local users to gain privileges via a crafted application that triggers unspecified "actions," aka "Windows…

  • CVE-2008-0087HigApr 8, 2008
    risk 0.51cvss 7.5epss 0.31

    The DNS client in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, and Vista uses predictable DNS transaction IDs, which allows remote attackers to spoof DNS responses.

  • CVE-2026-27913HigApr 14, 2026
    risk 0.50cvss 7.7epss 0.00

    Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.

  • CVE-2025-59200HigOct 14, 2025
    risk 0.50cvss 7.7epss 0.01

    Concurrent execution using shared resource with improper synchronization ('race condition') in Data Sharing Service Client allows an unauthorized attacker to perform spoofing locally.

  • CVE-2025-53722HigAug 12, 2025
    risk 0.50cvss 7.5epss 0.17

    Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a network.

  • CVE-2025-47984HigJul 8, 2025
    risk 0.50cvss 7.5epss 0.14

    Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network.

  • CVE-2025-29833HigMay 13, 2025
    risk 0.50cvss 7.7epss 0.00

    Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally.

  • CVE-2024-43584HigOct 8, 2024
    risk 0.50cvss 7.7epss 0.01

    Windows Scripting Engine Security Feature Bypass Vulnerability

  • CVE-2023-38162HigSep 12, 2023
    risk 0.50cvss 7.5epss 0.10

    DHCP Server Service Denial of Service Vulnerability

  • CVE-2022-37998HigOct 11, 2022
    risk 0.50cvss 7.7epss 0.03

    Windows Local Session Manager (LSM) Denial of Service Vulnerability

  • CVE-2022-37973HigOct 11, 2022
    risk 0.50cvss 7.7epss 0.03

    Windows Local Session Manager (LSM) Denial of Service Vulnerability

  • CVE-2021-40463HigOct 13, 2021
    risk 0.50cvss 7.7epss 0.02

    Windows Network Address Translation (NAT) Denial of Service Vulnerability

  • CVE-2020-17096HigDec 10, 2020
    risk 0.50cvss 7.5epss 0.19

    Windows NTFS Remote Code Execution Vulnerability

  • CVE-2020-1118HigMay 21, 2020
    risk 0.50cvss 7.5epss 0.16

    A denial of service vulnerability exists in the Windows implementation of Transport Layer Security (TLS) when it improperly handles certain key exchanges, aka 'Microsoft Windows Transport Layer Security Denial of Service Vulnerability'.

  • CVE-2020-0681HigFeb 11, 2020
    risk 0.50cvss 7.5epss 0.10

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0734.

  • CVE-2018-8345HigAug 15, 2018
    risk 0.50cvss 7.5epss 0.14

    A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed, aka "LNK Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows…

  • CVE-2018-8206HigJul 11, 2018
    risk 0.50cvss 7.5epss 0.11

    A denial of service vulnerability exists when Windows improperly handles File Transfer Protocol (FTP) connections, aka "Windows FTP Server Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012,…

  • CVE-2018-8226HigJun 14, 2018
    risk 0.50cvss 7.5epss 0.13

    A denial of service vulnerability exists in the HTTP 2.0 protocol stack (HTTP.sys) when HTTP.sys improperly parses specially crafted HTTP 2.0 requests, aka "HTTP.sys Denial of Service Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

  • CVE-2018-0961HigMay 9, 2018
    risk 0.50cvss 7.6epss 0.03

    A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate vSMB packet data, aka "Hyper-V vSMB Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

Page 110 of 238