VYPR

Windows Server 2003

by Microsoft

Source repositories

CVEs (4,760)

  • CVE-2007-0211Feb 13, 2007
    risk 0.00cvss epss 0.03

    The hardware detection functionality in the Windows Shell in Microsoft Windows XP SP2 and Professional, and Server 2003 SP1 allows local users to gain privileges via an unvalidated parameter to a function related to the "detection and registration of new hardware."

  • CVE-2007-0351Jan 19, 2007
    risk 0.00cvss epss 0.00

    Microsoft Windows XP and Windows Server 2003 do not properly handle user logoff, which might allow local users to gain the privileges of a previous system user, possibly related to user profile unload failure. NOTE: it is not clear whether this is an issue in Windows itself, or…

  • CVE-2006-5585Dec 13, 2006
    risk 0.00cvss epss 0.02

    The Client-Server Run-time Subsystem in Microsoft Windows XP SP2 and Server 2003 allows local users to gain privileges via a crafted file manifest within an application, aka "File Manifest Corruption Vulnerability."

  • CVE-2006-0008Feb 14, 2006
    risk 0.00cvss epss 0.02

    The ShellAbout API call in Korean Input Method Editor (IME) in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License…

  • CVE-2006-0488Feb 1, 2006
    risk 0.00cvss epss 0.02

    The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by dumper.asm.

  • CVE-2005-4269Dec 15, 2005
    risk 0.00cvss epss 0.05

    mshtml.dll in Microsoft Windows XP, Server 2003, and Internet Explorer 6.0 SP1 allows attackers to cause a denial of service (access violation) by causing mshtml.dll to process button-focus events at the same time that a document is reloading, as seen in Microsoft Office…

  • CVE-2005-3177Oct 6, 2005
    risk 0.00cvss epss 0.01

    CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descriptors do not satisfy certain…

  • CVE-2005-2765Sep 1, 2005
    risk 0.00cvss epss 0.01

    The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor…

  • CVE-2005-1982Aug 10, 2005
    risk 0.00cvss epss 0.02

    Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain controller when PKINIT smart card…

  • CVE-2005-2388Jul 27, 2005
    risk 0.00cvss epss 0.02

    Buffer overflow in a certain USB driver, as used on Microsoft Windows, allows attackers to execute arbitrary code.

  • CVE-2005-0061May 2, 2005
    risk 0.00cvss epss 0.02

    The kernel of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via certain access requests.

  • CVE-2005-0060May 2, 2005
    risk 0.00cvss epss 0.02

    Buffer overflow in the font processing component of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application.

  • CVE-2005-0550May 2, 2005
    risk 0.00cvss epss 0.02

    Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".

  • CVE-2004-0893Jan 10, 2005
    risk 0.00cvss epss 0.02

    The Local Procedure Call (LPC) interface of the Windows Kernel for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the lengths of messages sent to the LPC port, which allows local users to gain privileges, aka "Windows Kernel…

  • CVE-2004-2527Dec 31, 2004
    risk 0.00cvss epss 0.02

    The local and remote desktop login screens in Microsoft Windows XP before SP2 and 2003 allow remote attackers to cause a denial of service (CPU and memory consumption) by repeatedly using the WinKey+"U" key combination, which causes multiple copies of Windows Utility Manager to…

  • CVE-2004-2365Dec 31, 2004
    risk 0.00cvss epss 0.02

    Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial of service (memory exhaustion) by repeatedly creating and deleting directories using a non-standard tool such as smbmount.

  • CVE-2004-0211Nov 3, 2004
    risk 0.00cvss epss 0.02

    The kernel for Microsoft Windows Server 2003 does not reset certain values in CPU data structures, which allows local users to cause a denial of service (system crash) via a malicious program.

  • CVE-2004-0207Nov 3, 2004
    risk 0.00cvss epss 0.02

    "Shatter" style vulnerability in the Window Management application programming interface (API) for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to gain privileges by using certain API functions to change properties of…

  • CVE-2004-0208Nov 3, 2004
    risk 0.00cvss epss 0.02

    The Virtual DOS Machine (VDM) subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to access kernel memory and gain privileges via a malicious program that modified some system structures in a way that is not properly…

  • CVE-2002-2189Dec 31, 2002
    risk 0.00cvss epss 0.07

    Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link.

Page 238 of 238