Windows 2000 Security Vulnerabilities and Issues — Windows 2000 CVE List

Lucene search

MicrosoftWindows 2000

10 matches found

CVE•added 2009/06/10 6:30 p.m.•962 views

CVE-2009-1123

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Desktop Vulnerability...

7.8CVSS6.2AI score0.04402EPSS

CVE•added 2009/06/10 6:0 p.m.•65 views

CVE-2009-0229

The Windows Printing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows local users to read arbitrary files via a crafted separator page, aka "Print Spooler Read File Vulnerability."

4.9CVSS7AI score0.03494EPSS

CVE•added 2009/06/10 6:0 p.m.•62 views

CVE-2009-0568

The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly maintain its internal state, which allows remote attackers to overwrite arbitrary memory locations via a crafted RPC message that trig...

10CVSS6.6AI score0.54703EPSS

CVE•added 2009/06/10 6:30 p.m.•58 views

CVE-2009-1124

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate user-mode pointers in unspecified error conditions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Pointer ...

7.2CVSS6.3AI score0.00677EPSS

CVE•added 2009/06/10 6:30 p.m.•56 views

CVE-2009-1126

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly validate the user-mode input associated with the editing of an unspecified desktop parameter, which allows local users to gain privileges via a crafted application, aka "Windows Desktop Parameter Edit Vu...

7.2CVSS6.3AI score0.00627EPSS

CVE•added 2009/06/10 6:0 p.m.•53 views

CVE-2009-0228

Stack-based buffer overflow in the EnumeratePrintShares function in Windows Print Spooler Service (win32spl.dll) in Microsoft Windows 2000 SP4 allows remote printer servers to execute arbitrary code via a crafted ShareName in a response to an RPC request, related to "printing data structures," aka ...

10CVSS7.8AI score0.4121EPSS

CVE•added 2009/06/10 6:0 p.m.•51 views

CVE-2009-0230

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file from an arbitrary directory, aka "Print Spooler ...

9CVSS6.5AI score0.38919EPSS

CVE•added 2009/06/10 6:30 p.m.•49 views

CVE-2009-1125

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate an argument to an unspecified system call, which allows local users to gain privileges via a crafted application, aka "Windows Driver Class Registratio...

7.2CVSS6.3AI score0.00527EPSS

CVE•added 2009/06/10 6:0 p.m.•45 views

CVE-2009-1139

Memory leak in the LDAP service in Active Directory on Microsoft Windows 2000 SP4 and Server 2003 SP2, and Active Directory Application Mode (ADAM) on Windows XP SP2 and SP3 and Server 2003 SP2, allows remote attackers to cause a denial of service (memory consumption and service outage) via (1) LDA...

7.8CVSS6.6AI score0.59258EPSS

CVE•added 2009/06/10 6:0 p.m.•42 views

CVE-2009-1138

The LDAP service in Active Directory on Microsoft Windows 2000 SP4 does not properly free memory for LDAP and LDAPS requests, which allows remote attackers to execute arbitrary code via a request that uses hexadecimal encoding, whose associated memory is not released, related to a "DN AttributeValu...

10CVSS7.6AI score0.60404EPSS