VYPR

Windows Server 2003

by Microsoft

Source repositories

CVEs (4,760)

  • CVE-2018-8423HigOct 10, 2018
    risk 0.53cvss 7.8epss 0.33

    A remote code execution vulnerability exists in the Microsoft JET Database Engine, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server…

  • CVE-2018-8392HigSep 13, 2018
    risk 0.53cvss 7.8epss 0.23

    A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1,…

  • CVE-2018-8210HigJun 14, 2018
    risk 0.53cvss 7.8epss 0.25

    A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10…

  • CVE-2013-3129HigJul 10, 2013
    risk 0.53cvss 7.8epss 0.32

    Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,…

  • CVE-2010-1883HigOct 13, 2010
    risk 0.53cvss 7.8epss 0.23

    Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to execute arbitrary code via a crafted table in an…

  • CVE-2003-1048HigJul 27, 2004
    risk 0.53cvss 7.8epss 0.27

    Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.

  • CVE-2026-33826HigApr 14, 2026
    risk 0.52cvss 8.0epss 0.01

    Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.

  • CVE-2026-27912HigApr 14, 2026
    risk 0.52cvss 8.0epss 0.00

    Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.

  • CVE-2026-20931HigJan 13, 2026
    risk 0.52cvss 8.0epss 0.01

    External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adjacent network.

  • CVE-2018-8393HigSep 13, 2018
    risk 0.52cvss 7.8epss 0.22

    A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1,…

  • CVE-2018-8209HigJun 14, 2018
    risk 0.52cvss 8.0epss 0.03

    An information disclosure vulnerability exists when Windows allows a normal user to access the Wireless LAN profile of an administrative user, aka "Windows Wireless Network Profile Information Disclosure Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10…

  • CVE-2018-8136HigMay 9, 2018
    risk 0.52cvss 7.8epss 0.22

    A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows…

  • CVE-2012-2897HigSep 26, 2012
    risk 0.52cvss 7.8epss 0.22

    The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT, as used by Google Chrome before 22.0.1229.79 and other…

  • CVE-2004-0119HigJun 1, 2004
    risk 0.52cvss 7.5epss 0.40

    The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or execute arbitrary code via a crafted SPNEGO NegTokenInit request during…

  • CVE-2026-48583HigJun 9, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-48578HigJun 9, 2026
    risk 0.51cvss 7.9epss 0.00

    Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

  • CVE-2026-48576HigJun 9, 2026
    risk 0.51cvss 7.9epss 0.01

    Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

  • CVE-2026-48575HigJun 9, 2026
    risk 0.51cvss 7.9epss 0.00

    Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

  • CVE-2026-48574HigJun 9, 2026
    risk 0.51cvss 7.8epss 0.00

    Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally.

  • CVE-2026-48573HigJun 9, 2026
    risk 0.51cvss 7.9epss 0.01

    Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

Page 7 of 238