Windows 2003 Server@enterprise Security Vulnerabilities and Issues — Windows 2003 Server@enterprise CVE List

Lucene search

MicrosoftWindows 2003 Serverenterprise

11 matches found

CVE•added 2006/01/10 10:3 p.m.•121 views

CVE-2006-0010

Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overf...

9.3CVSS7.7AI score0.67399EPSS

CVE•added 2006/06/13 7:6 p.m.•68 views

CVE-2006-2379

Buffer overflow in the TCP/IP Protocol driver in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via unknown vectors related to IP source routing.

9.3CVSS7.7AI score0.57385EPSS

CVE•added 2006/05/10 2:14 a.m.•67 views

CVE-2006-1184

Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which causes an out-of-range me...

5CVSS6.3AI score0.58234EPSS

CVE•added 2006/05/10 2:14 a.m.•60 views

CVE-2006-0034

Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or ...

7.5CVSS7.9AI score0.5197EPSS

CVE•added 2006/02/14 7:6 p.m.•54 views

CVE-2006-0013

Buffer overflow in the Web Client service (WebClnt.dll) for Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote authenticated users or Guests to execute arbitrary code via crafted RPC requests, a different vulnerability than CVE-2005-1207.

6.5CVSS7.4AI score0.67458EPSS

CVE•added 2006/02/14 7:6 p.m.•49 views

CVE-2006-0021

Microsoft Windows XP SP1 and SP2, and Server 2003 up to SP1, allows remote attackers to cause a denial of service (hang) via an IGMP packet with an invalid IP option, aka the "IGMP v3 DoS Vulnerability."

7.8CVSS6.4AI score0.69661EPSS

CVE•added 2006/04/03 10:4 a.m.•48 views

CVE-2006-1591

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.

5.1CVSS7.8AI score0.28999EPSS

CVE•added 2006/02/14 7:6 p.m.•47 views

CVE-2006-0008

The ShellAbout API call in Korean Input Method Editor (IME) in Korean versions of Microsoft Windows XP SP1 and SP2, Windows Server 2003 up to SP1, and Office 2003, allows local users to gain privileges by launching the "shell about dialog box" and clicking the "End-User License Agreement" link, whi...

7.2CVSS6.4AI score0.00786EPSS

CVE•added 2006/04/12 12:2 a.m.•45 views

CVE-2006-0012

Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability."

5.1CVSS7.5AI score0.532EPSS

CVE•added 2006/01/09 8:3 p.m.•40 views

CVE-2006-0143

Microsoft Windows Graphics Rendering Engine (GRE) allows remote attackers to corrupt memory and cause a denial of service (crash) via a WMF file containing (1) ExtCreateRegion or (2) ExtEscape function calls with arguments with inconsistent lengths.

7.5CVSS6.7AI score0.75566EPSS

CVE•added 2006/07/06 1:5 a.m.•37 views

CVE-2006-3351

Buffer overflow in Windows Explorer (explorer.exe) on Windows XP and 2003 allows user-assisted attackers to cause a denial of service (repeated crash) and possibly execute arbitrary code via a .url file with an InternetShortcut tag containing a long URL and a large number of "file:" specifiers.

5.4CVSS7.8AI score0.25495EPSS