Lucene search

K
MicrosoftWindows 2000

40 matches found

CVE
CVE
added 2007/02/23 2:28 a.m.85 views

CVE-2007-0843

The ReadDirectoryChangesW API function on Microsoft Windows 2000, XP, Server 2003, and Vista does not check permissions for child objects, which allows local users to bypass permissions by opening a directory with LIST (READ) access and using ReadDirectoryChangesW to monitor changes of files that d...

4.6CVSS6.1AI score0.00418EPSS
CVE
CVE
added 2009/06/10 6:0 p.m.65 views

CVE-2009-0229

The Windows Printing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows local users to read arbitrary files via a crafted separator page, aka "Print Spooler Read File Vulnerability."

4.9CVSS7AI score0.03494EPSS
CVE
CVE
added 2010/05/06 12:47 p.m.62 views

CVE-2010-1734

The SfnINSTRING function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service (system crash) via a 0x18d value in the second argument (aka the Msg argument) of a PostMessage function call for the DDEMLEvent window.

4.9CVSS6.3AI score0.00815EPSS
CVE
CVE
added 2012/02/02 5:55 p.m.62 views

CVE-2010-4562

Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping. NOTE: due to a typo,...

4.3CVSS6.3AI score0.17321EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.61 views

CVE-2010-0234

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 does not properly validate a registry-key argument to an unspecified system call, which allows local users to cause a denial of service (reboot) via a crafted applicatio...

4.7CVSS6AI score0.0066EPSS
CVE
CVE
added 2010/03/31 7:30 p.m.58 views

CVE-2010-0494

Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted HTML document in a situation where the client user drags one browser window across another...

4.3CVSS5.4AI score0.46282EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.57 views

CVE-1999-0384

The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.

4.6CVSS6.8AI score0.00272EPSS
CVE
CVE
added 2001/07/27 4:0 a.m.57 views

CVE-2001-0350

Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of th...

4.6CVSS7.1AI score0.00404EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.57 views

CVE-2002-1700

Cross-site scripting vulnerability (XSS) in the missing template handler in Macromedia ColdFusion MX allows remote attackers to execute arbitrary script as other users by injecting script into the HTTP request for the name of a template, which is not filtered in the resulting 404 error message.

4.3CVSS6.4AI score0.16341EPSS
CVE
CVE
added 2004/02/03 5:0 a.m.53 views

CVE-2002-0034

The Microsoft CONVERT.EXE program, when used on Windows 2000 and Windows XP systems, does not apply the default NTFS permissions when converting a FAT32 file system, which could cause the conversion to produce a file system with less secure permissions than expected.

4.6CVSS6.5AI score0.00247EPSS
CVE
CVE
added 2010/05/06 12:47 p.m.52 views

CVE-2010-1735

The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service (system crash) via a 0x4c value in the second argument (aka the Msg argument) of a PostMessage function call for the DDEMLEvent window.

4.9CVSS6.3AI score0.00756EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.51 views

CVE-2001-1347

Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.

4.6CVSS7AI score0.00448EPSS
CVE
CVE
added 2003/05/12 4:0 a.m.50 views

CVE-2003-0112

Buffer overflow in Windows Kernel allows local users to gain privileges by causing certain error messages to be passed to a debugger.

4.6CVSS6.8AI score0.03564EPSS
CVE
CVE
added 2006/09/12 11:7 p.m.50 views

CVE-2006-0032

Cross-site scripting (XSS) vulnerability in the Indexing Service in Microsoft Windows 2000, XP, and Server 2003, when the Encoding option is set to Auto Select, allows remote attackers to inject arbitrary web script or HTML via a UTF-7 encoded URL, which is injected into an error message whose char...

4.3CVSS5.4AI score0.66127EPSS
CVE
CVE
added 2006/06/13 7:6 p.m.50 views

CVE-2006-2380

Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the "RPC Mutual Authentication Vulnerability."

4.3CVSS6.8AI score0.22036EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.48 views

CVE-1999-0715

Buffer overflow in Remote Access Service (RAS) client allows an attacker to execute commands or cause a denial of service via a malformed phonebook entry.

4.6CVSS7.3AI score0.00919EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.48 views

CVE-1999-0716

Buffer overflow in Windows NT 4.0 help file utility via a malformed help file.

4.6CVSS7.2AI score0.01139EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.48 views

CVE-2000-0790

The web-based folder display capability in Microsoft Internet Explorer 5.5 on Windows 98 allows local users to insert Trojan horse programs by modifying the Folder.htt file and using the InvokeVerb method in the ShellDefView ActiveX control to specify a default execute option for the first file tha...

4.6CVSS6.8AI score0.01583EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.48 views

CVE-2010-0235

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Vista Gold does not perform the expected validation before creating a symbolic link, which allows local users to cause a denial of service (reboot) via a crafted application, aka "Windows Kernel Symbolic Link Value Vulne...

4.7CVSS6AI score0.00887EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.44 views

CVE-2000-0851

Buffer overflow in the Still Image Service in Windows 2000 allows local users to gain additional privileges via a long WM_USER message, aka the "Still Image Service Privilege Escalation" vulnerability.

4.6CVSS6.8AI score0.0136EPSS
CVE
CVE
added 2005/10/06 10:2 a.m.44 views

CVE-2005-3174

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows users to log on to the domain, even when their password has expired, if the fully qualified domain name (FQDN) is 8 characters long.

4.6CVSS7AI score0.00204EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.43 views

CVE-2000-0663

The registry entry for the Windows Shell executable (Explorer.exe) in Windows NT and Windows 2000 uses a relative path name, which allows local users to execute arbitrary commands by inserting a Trojan Horse named Explorer.exe into the %Systemdrive% directory, aka the "Relative Shell Path" vulnerab...

4.6CVSS7.2AI score0.00825EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.43 views

CVE-2000-1217

Microsoft Windows 2000 before Service Pack 2 (SP2), when running in a non-Windows 2000 domain and using NTLM authentication, and when credentials of an account are locally cached, allows local users to bypass account lockout policies and make an unlimited number of login attempts, aka the "Domain A...

4.6CVSS6.3AI score0.01637EPSS
CVE
CVE
added 2001/02/16 5:0 a.m.43 views

CVE-2001-0046

The default permissions for the SNMP Parameters registry key in Windows NT 4.0 allows remote attackers to read and possibly modify the SNMP community strings to obtain sensitive information or modify network configuration, aka one of the "Registry Permissions" vulnerabilities.

4.6CVSS6.4AI score0.00454EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.43 views

CVE-2002-0443

Microsoft Windows 2000 allows local users to bypass the policy that prohibits reusing old passwords by changing the current password before it expires, which does not enable the check for previous passwords.

4.6CVSS6.8AI score0.00789EPSS
CVE
CVE
added 2005/12/04 11:3 a.m.43 views

CVE-2005-3981

NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain arguments on a process that has been opened using the OpenProcess function, possibly involving an invalid add...

4.9CVSS6.8AI score0.00352EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.42 views

CVE-2002-1230

NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code as LocalSystem via "shatter" style attack by sending a WM_COPYDATA message followed by a WM_TIMER message, as demonstrated by GetAd, aka "Flaw in Windows WM_TIMER M...

4.6CVSS7.2AI score0.00589EPSS
CVE
CVE
added 2010/02/26 7:30 p.m.42 views

CVE-2010-0719

An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7 does not validate arguments, which allows local users to cause a denial of service (system crash) via a crafted application.

4.7CVSS6.4AI score0.00416EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.40 views

CVE-2002-1184

The system root folder of Microsoft Windows 2000 has default permissions of Everyone group with Full access (Everyone:F) and is in the search path when locating programs during login or application launch from the desktop, which could allow attackers to gain privileges as other users via Trojan hor...

4.6CVSS7.2AI score0.00398EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.40 views

CVE-2010-0238

Unspecified vulnerability in registry-key validation in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Vista Gold allows local users to cause a denial of service (reboot) via a crafted application, aka "Windows Kernel Registry Key Vulnerability."

4.9CVSS6AI score0.01209EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.39 views

CVE-2001-0502

Running Windows 2000 LDAP Server over SSL, a function does not properly check the permissions of a user request when the directory principal is a domain user and the data attribute is the domain password, which allows local users to modify the login password of other users.

4.6CVSS6.4AI score0.00956EPSS
CVE
CVE
added 2005/10/06 10:2 a.m.39 views

CVE-2005-3173

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions.

4.6CVSS6.9AI score0.00204EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.38 views

CVE-1999-1358

When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy f...

4.6CVSS6.8AI score0.00227EPSS
CVE
CVE
added 2000/10/20 4:0 a.m.38 views

CVE-2000-0737

The Service Control Manager (SCM) in Windows 2000 creates predictable named pipes, which allows a local user with console access to gain administrator privileges, aka the "Service Control Manager Named Pipe Impersonation" vulnerability.

4.6CVSS6.5AI score0.00842EPSS
CVE
CVE
added 2005/10/06 10:2 a.m.38 views

CVE-2005-3177

CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descriptors do not satisfy certain NTFS conventions, whic...

4.6CVSS6.9AI score0.0104EPSS
CVE
CVE
added 2003/08/18 4:0 a.m.37 views

CVE-2003-0350

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback...

4.6CVSS7.3AI score0.00884EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.36 views

CVE-1999-0534

A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single Process...

4.6CVSS7.5AI score0.00272EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.36 views

CVE-2000-0475

Windows 2000 allows a local user process to access another user's desktop within the same windows station, aka the "Desktop Separation" vulnerability.

4.6CVSS6.7AI score0.02471EPSS
CVE
CVE
added 2005/10/06 10:2 a.m.36 views

CVE-2005-3171

Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuser.pol cannot be accessed, which could cause system administrators to believe that the system is com...

4.6CVSS6.9AI score0.00204EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.30 views

CVE-2000-0933

The Input Method Editor (IME) in the Simplified Chinese version of Windows 2000 does not disable access to privileged functionality that should normally be restricted, which allows local users to gain privileges, aka the "Simplified Chinese IME State Recognition" vulnerability.

4.6CVSS6.8AI score0.02471EPSS