Windows Vista Security Vulnerabilities and Issues — Windows Vista CVE List

Lucene search

MicrosoftWindows Vista

22 matches found

CVE•added 2016/11/10 7:0 a.m.•1088 views

CVE-2016-7255

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win3...

7.8CVSS7.6AI score0.89359EPSS

CVE•added 2016/11/10 7:0 a.m.•1009 views

CVE-2016-7256

atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a cra...

9.3CVSS8.8AI score0.59042EPSS

CVE•added 2016/11/10 6:59 a.m.•135 views

CVE-2016-7212

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow remote attackers to execute arbitrary code via a crafted image file, aka "Windows Remote Code ...

9.3CVSS8AI score0.40707EPSS

CVE•added 2016/11/10 6:59 a.m.•115 views

CVE-2016-0026

The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted appl...

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•112 views

CVE-2016-7237

Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote authenticated users to cause a d...

6.8CVSS6.2AI score0.58598EPSS

CVE•added 2016/11/10 6:59 a.m.•101 views

CVE-2016-3338

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•88 views

CVE-2016-3335

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•85 views

CVE-2016-3340

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•85 views

CVE-2016-7184

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•84 views

CVE-2016-7218

Bowser.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a cr...

4.7CVSS5AI score0.01428EPSS

CVE•added 2016/11/10 6:59 a.m.•79 views

CVE-2016-3332

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•79 views

CVE-2016-7210

atmfd.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a craft...

6.5CVSS6.5AI score0.35475EPSS

CVE•added 2016/11/10 6:59 a.m.•79 views

CVE-2016-7214

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to bypass the ASLR protection mechanism via a crafted a...

3.3CVSS4.7AI score0.01956EPSS

CVE•added 2016/11/10 6:59 a.m.•78 views

CVE-2016-7215

7.8CVSS7.5AI score0.04123EPSS

CVE•added 2016/11/10 6:59 a.m.•78 views

CVE-2016-7238

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandle caching for NTLM password-change requests, which allows local users to gain privileges via...

7.8CVSS7.6AI score0.00457EPSS

CVE•added 2016/11/10 6:59 a.m.•76 views

CVE-2016-3334

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•76 views

CVE-2016-7216

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandles permissions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."

5.5CVSS5.5AI score0.01222EPSS

CVE•added 2016/11/10 6:59 a.m.•75 views

CVE-2016-3333

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•72 views

CVE-2016-3343

9.3CVSS7.5AI score0.1385EPSS

CVE•added 2016/11/10 6:59 a.m.•72 views

CVE-2016-7221

Input Method Editor (IME) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via...

7.8CVSS7.6AI score0.01519EPSS

CVE•added 2016/11/10 7:0 a.m.•72 views

CVE-2016-7248

Microsoft Video Control in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted file, aka "Microsoft Video Control Remote Code Execution Vulnerability."

9.3CVSS8AI score0.3156EPSS

CVE•added 2016/11/10 6:59 a.m.•69 views

CVE-2016-3342

9.3CVSS7.5AI score0.1385EPSS