Windows 2003 Server Security Vulnerabilities and Issues — Windows 2003 Server CVE List

Lucene search

MicrosoftWindows 2003 Server

7 matches found

CVE•added 2009/08/12 5:30 p.m.•100 views

CVE-2009-1930

The Telnet service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote Telnet servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, aka "Telnet Credential Reflection ...

10CVSS7.5AI score0.46181EPSS

CVE•added 2009/08/12 5:30 p.m.•63 views

CVE-2009-1923

Heap-based buffer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 and Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted WINS replication packet that triggers an incorrect buffer-length calculation, aka "WINS Heap Overflow V...

9.3CVSS7.9AI score0.44485EPSS

CVE•added 2009/08/12 5:30 p.m.•60 views

CVE-2009-1929

Heap-based buffer overflow in the Microsoft Terminal Services Client ActiveX control running RDP 6.1 on Windows XP SP2, Vista SP1 or SP2, or Server 2008 Gold or SP2; or 5.2 or 6.1 on Windows XP SP3; allows remote attackers to execute arbitrary code via unspecified parameters to unknown methods, aka...

9.3CVSS8.1AI score0.68228EPSS

CVE•added 2009/08/12 5:30 p.m.•57 views

CVE-2009-1544

Double free vulnerability in the Workstation service in Microsoft Windows allows remote authenticated users to gain privileges via a crafted RPC message to a Windows XP SP2 or SP3 or Server 2003 SP2 system, or cause a denial of service via a crafted RPC message to a Vista Gold, SP1, or SP2 or Serve...

9CVSS6.5AI score0.36621EPSS

CVE•added 2009/08/12 5:30 p.m.•48 views

CVE-2009-1546

Integer overflow in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows allows remote attackers to execute arbitrary code on a Windows 2000 SP4 system via a crafted AVI file, or cause a denial of service on a Windows XP SP2 or SP3, Server 2003 SP2, Vista Gold, SP1, or...

8.5CVSS7.9AI score0.63266EPSS

CVE•added 2009/08/12 5:30 p.m.•47 views

CVE-2009-1924

Integer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 allows remote WINS replication partners to execute arbitrary code via crafted data structures in a packet, aka "WINS Integer Overflow Vulnerability."

9.3CVSS7.8AI score0.20707EPSS

CVE•added 2009/08/12 5:30 p.m.•42 views

CVE-2009-1545

Unspecified vulnerability in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a malformed header in a crafted AVI...

9.3CVSS7.5AI score0.57802EPSS