6 matches found
CVE-2006-5583
CVE-2006-5583 is a remote code execution vulnerability in the Windows SNMP Service caused by an unchecked buffer when processing crafted SNMP GetBulk requests. Affected products include Windows 2000 SP4, Windows XP SP2, and Windows Server 2003 (including SP1 for some editions). Successful exploit...
CVE-2005-0050
CVE-2005-0050 covers a remote code execution/DoS vulnerability in the Windows License Logging Service (LLS) affecting Windows NT Server, Windows 2000 Server, and Windows Server 2003. The root cause is an unchecked buffer due to improper validation of message lengths, enabling a specially crafted ...
CVE-2007-0025
The CVE-2007-0025 family describes a stack-based buffer overflow in the MFC component (AfxOleSetEditMenu) of the MFC42u.dll used by Windows 2000 SP4, XP SP2, Server 2003 SP1, and Visual Studio .NET 2000/2002/2003/2003 SP1. A malformed OLE object in an RTF file triggers memory corruption, enabling...
CVE-2004-1080
Summary: CVE-2004-1080 describes a remote memory overwrite in the Windows WINS service (wins.exe) via a crafted WINS replication packet sent to TCP port 42, which could allow arbitrary code execution. Affected products: Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003...
CVE-2004-0892
CVE-2004-0892 describes a spoofing vulnerability in ISA Server 2000 and Proxy Server 2.0 (also in Small Business Server 2000/2003 Premium) where reverse-DNS cache results can be manipulated to spoof trusted Internet content on a crafted page. Connected data confirms the bug exists in these produc...
CVE-2007-1692
CVE-2007-1692 concerns WPAD abuse via name registrations in Windows WINS/DNS. The default Windows config may allow remote attackers to intercept user web traffic by registering a proxy using WINS/DNS and answering WPAD requests (as shown with Internet Explorer). Related entries (CVE-2009-0093/009...