Windows 98se Security Vulnerabilities and Issues — Windows 98se CVE List

Lucene search

MicrosoftWindows 98se

9 matches found

CVE•added 2005/05/02 4:0 a.m.•61 views

CVE-2005-0059

Buffer overflow in the Message Queuing component of Microsoft Windows 2000 and Windows XP SP1 allows remote attackers to execute arbitrary code via a crafted message.

10CVSS7.4AI score0.87435EPSS

CVE•added 2005/05/02 4:0 a.m.•60 views

CVE-2005-0044

The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validation Vulnerability."

7.5CVSS7.4AI score0.37835EPSS

CVE•added 2005/05/02 4:0 a.m.•59 views

CVE-2005-0053

Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the "Drag-and-Drop Vulnerability."

7.5CVSS7.6AI score0.69598EPSS

CVE•added 2005/05/02 4:0 a.m.•59 views

CVE-2005-0063

The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host (MSHTA), as demonstrated using a Mi...

7.5CVSS7.1AI score0.6734EPSS

CVE•added 2005/05/02 4:0 a.m.•49 views

CVE-2005-0061

The kernel of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via certain access requests.

7.2CVSS6.5AI score0.02964EPSS

CVE•added 2005/05/02 4:0 a.m.•47 views

CVE-2005-0057

The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow.

7.5CVSS7.9AI score0.49039EPSS

CVE•added 2005/05/02 4:0 a.m.•45 views

CVE-2005-1184

The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the correct sequence number but the wrong Acknowledgement number, which generates a large number of "keep alive" packets. NOTE: some followups indicate that th...

5CVSS6.9AI score0.44264EPSS

CVE•added 2005/05/02 4:0 a.m.•45 views

CVE-2005-1191

The Web View DLL (webvw.dll), as used in Windows Explorer on Windows 2000 systems, does not properly filter an apostrophe ("'") in the author name in a document, which allows attackers to execute arbitrary script via extra attributes when Web View constructs a mailto: link for the preview pane when...

5CVSS7.2AI score0.23663EPSS

CVE•added 2005/05/02 4:0 a.m.•44 views

CVE-2005-0060

Buffer overflow in the font processing component of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application.

7.2CVSS6.7AI score0.01769EPSS