Lucene search
K
MicrosoftWindows Xp

738 matches found

CVE
CVE
added 2010/07/22 10:0 a.m.1700 views

CVE-2010-2568

CVE-2010-2568 affects the Windows shell icon display for shortcut files, enabling arbitrary code execution when a crafted .LNK or .PIF is processed by Windows Explorer. Affected systems include Windows XP SP3, Server 2003 SP2, Windows Vista SP1/SP2, Windows Server 2008 SP2/R2, and Windows 7, with...

9.3CVSS7.7AI score0.91324EPSS
In wild
CVE
CVE
added 2012/04/10 9:0 p.m.1126 views

CVE-2012-0151

CVE-2012-0151 : A vulnerability in the Windows Authenticode Signature Verification (WinVerifyTrust) function (affecting Windows XP SP2/XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1, and Windows 8 Consumer Preview) fails to properly validate the dige...

9.3CVSS5.8AI score0.8878EPSS
In wild
CVE
CVE
added 2002/10/05 4:0 a.m.1087 views

CVE-2002-0370

CVE-2002-0370 refers to a buffer overflow/unchecked buffer in ZIP decompression in Windows ZIP handling affecting Windows 98 with Plus! Pack, XP, ME, Lotus Notes R4–R6, Verity KeyView, and StuffIt Expander before 7.0. OpenVAS and Nessus entries corroborate the MS02-054 fix. The vulnerability can ...

7.5CVSS7.9AI score0.43298EPSS
CVE
CVE
added 2013/11/27 11:0 p.m.1087 views

CVE-2013-5065

NDProxy.sys in the Windows kernel is affected by a local privilege escalation flaw (CVE-2013-5065) caused by improper input validation in the NDPROXY driver. A crafted IOCTL path allows a local attacker to exploit a NULL pointer dereference to escalate privileges on affected systems. Public explo...

7.8CVSS6.3AI score0.34893EPSS
In wild
CVE
CVE
added 2010/12/03 8:0 p.m.1056 views

CVE-2010-4398

CVE-2010-4398 is a stack-based buffer overflow in win32k.sys (RtlQueryRegistryValues) that enables local privilege escalation and UAC bypass across multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 SP2/R2, and Windows 7). The vulnerability is triggered by a craft...

7.8CVSS6.8AI score0.08661EPSS
In wild
CVE
CVE
added 2013/05/24 8:0 p.m.1048 views

CVE-2013-3660

CVE-2013-3660 describes a local privilege-escalation in Microsoft Windows via Win32k.sys (EPATHOBJ::pprFlattenRec) where a pointer for the next object in a PATHREC list is not properly initialized. According to the CVE description and linked documents, local users could gain write access to the P...

7.8CVSS6.5AI score0.39578EPSS
In wild
CVE
CVE
added 2010/01/21 7:0 p.m.1047 views

CVE-2010-0232

CVE-2010-0232 is a Windows kernel elevation-of-privilege vulnerability affecting 16‑bit BIOS call handling in NTVDM. When 16‑bit app access is enabled on 32‑bit x86, the kernel fails to validate certain BIOS calls, allowing a local user to craft a VDM_TIB in the TEB and trigger the NTVDM NtVdmCon...

7.8CVSS6.2AI score0.29253EPSS
In wild
CVE
CVE
added 2011/10/12 1:0 a.m.1017 views

CVE-2011-2005

CVE-2011-2005 : Afd.sys in the Microsoft Windows XP (SP2/SP3) and Server 2003 (SP2) Ancillary Function Driver fails to properly validate user‑mode input before passing to kernel mode, enabling local privilege escalation. Exploitation climbs from a crafted user‑mode application to SYSTEM privilege...

7.8CVSS6.2AI score0.31761EPSS
In wild
CVE
CVE
added 2009/06/10 6:0 p.m.1013 views

CVE-2009-1123

CVE-2009-1123 describes a Windows kernel local privilege escalation: Windows 2000 SP4; XP SP2/SP3; Server 2003 SP2; Vista (Gold/SP1/SP2); Server 2008 SP2 fail to validate changes to certain kernel objects, allowing local users to gain privileges via a crafted application. Affected components: ker...

7.8CVSS6.2AI score0.04918EPSS
In wildWeb
CVE
CVE
added 2011/12/30 1:0 a.m.867 views

CVE-2011-3416

CVE-2011-3416 affects Microsoft .NET Framework's ASP.NET Forms Authentication, allowing remote authenticated users to obtain access to arbitrary user accounts via a crafted username. Affected: .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0. The issue is addressed by MS11-100; vulnerable...

8.5CVSS6AI score0.45576EPSS
CVE
CVE
added 2004/05/05 4:0 a.m.816 views

CVE-2004-0230

Technical details beyond the public description are not provided in the supplied documents. CVE-2004-0230 describes a TCP sequence-number guessing/RST-injection denial-of-service under large window size; no remediation details are given here.

5CVSS9.1AI score0.80855EPSS
CVE
CVE
added 2008/10/23 9:0 p.m.669 views

CVE-2008-4250

The CVE-2008-4250 issue is a remote code execution vulnerability in the Windows Server Service. The root cause is a buffer/overflow in the path canonicalization logic (triggered via crafted RPC requests to NetAPI32/Server Service), affecting Windows versions listed in the entry (e.g., Windows 200...

10CVSS9.5AI score0.98751EPSS
In wild
CVE
CVE
added 2008/10/20 5:0 p.m.522 views

CVE-2008-4609

CVE-2008-4609 is a TCP state-exhaustion DoS vulnerability demonstrated by sockstress. It was described as affecting the TCP implementation in Linux, BSD-based platforms, Windows, Cisco products, and probably others. The issue enables a remote attacker to exhaust connection state, potentially rend...

7.1CVSS8.8AI score0.32123EPSS
CVE
CVE
added 2012/03/13 9:0 p.m.355 views

CVE-2012-0002

CVE-2012-0002 is a Remote Desktop Protocol memory-processing vulnerability in affected Windows platforms (Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1). The flaw permits remote code execution by sending specially crafted RDP packets tha...

9.3CVSS9.5AI score0.74102EPSS
CVE
CVE
added 2017/06/15 8:0 p.m.345 views

CVE-2017-8461

CVE-2017-8461 affects Windows XP and Windows Server 2003, enabling remote code execution through the RRAS service. The vulnerability is a MIBEntryGet/overflow in RRAS’s DCERPC endpoint, exploitable via a crafted application and unauthenticated access on affected OS versions. Public details note e...

7.8CVSS7.7AI score0.21108EPSS
CVE
CVE
added 2009/10/14 10:0 a.m.270 views

CVE-2009-2524

CVE-2009-2524 refers to an Integer Overflow in LSASS during NTLM authentication in multiple Windows versions. A malformed NTLM packet can cause LSASS to crash and reboot the host, i.e., a denial-of-service condition. Affected software includes Windows XP SP2/SP3, Windows Server 2003 SP2, Windows ...

7.8CVSS6.5AI score0.28261EPSS
CVE
CVE
added 2011/04/13 6:0 p.m.235 views

CVE-2011-0657

CVE-2011-0657 affects the DNSAPI.dll DNS client in multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, Windows 7 SP1). Root cause: improper processing of DNS queries by the DNS client, enabling remote attackers to run arbitrary code via (1) a crafted L...

9.8CVSS7.6AI score0.63335EPSS
CVE
CVE
added 2003/07/17 4:0 a.m.227 views

CVE-2003-0352

CVE-2003-0352 describes a buffer overflow vulnerability in the DCOM RPC interface (RPCSS) of Windows NT 4.0 SP3-6a, Windows 2000, XP, and Server 2003. The issue is a stack/heap buffer overflow triggered by a malformed DCERPC DCOM object activation request with modified length fields, allowing rem...

7.5CVSS7.5AI score0.98626EPSS
CVE
CVE
added 2013/09/11 10:0 a.m.227 views

CVE-2013-0810

CVE-2013-0810 affects Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, and Windows Server 2008 SP2. Attackers could trigger remote code execution by delivering a crafted theme file containing a malicious screensaver. The root cause is improper handling of screensaver/theme data, al...

9.3CVSS7.7AI score0.59885EPSS
Web
CVE
CVE
added 2004/04/16 4:0 a.m.224 views

CVE-2003-0533

The CVE-2003-0533 issue is a stack-based buffer overflow in LSASS (LSASRV.DLL) affecting multiple Windows platforms (NT 4.0 SP6a, 2000 SP2–SP4, XP SP1, Server 2003) and related products. The underlying flaw is in the DS RolerUpgradeDownlevelServer function invoked via DCERPC, which can cause an o...

7.5CVSS7.8AI score0.8615EPSS
CVE
CVE
added 2013/08/14 10:0 a.m.216 views

CVE-2013-3175

CVE-2013-3175 is a Windows elevation-of-privilege issue in the handling of asynchronous RPC requests. Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT. Root cause...

10CVSS7.5AI score0.27538EPSS
CVE
CVE
added 2010/04/14 3:44 p.m.212 views

CVE-2010-0480

CVE-2010-0480 is a remote code execution vulnerability in Microsoft MPEG Layer-3 codecs. The issue arises from multiple stack-based buffer overflows in the MPEG Layer-3 audio decoders (l3codecx.ax and related ACM codecs) when processing crafted AVI files, affecting Windows 2000 SP4, XP SP2/SP3, S...

9.3CVSS7.5AI score0.67888EPSS
Web
CVE
CVE
added 2009/07/29 5:0 p.m.211 views

CVE-2009-2493

CVE-2009-2493 : Microsoft’s ATL vulnerability enables remote code execution when a user loads a specially crafted component/control hosted on a malicious page. The issue is described in MS09-037 (ATL vulnerabilities) and is addressed by Microsoft security bulletin updates; affected products inclu...

9.3CVSS7.2AI score0.379EPSS
CVE
CVE
added 2008/09/16 11:0 p.m.189 views

CVE-2008-4114

The CVE-2008-4114 issue affects the Windows SMB SRV.SYS driver (WriteAndX handling) across multiple Windows platforms (Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, Vista Gold/SP1, Server 2008). The vulnerability arises from insufficient validation of the SMB WRITE_ANDX DataOffset, which can...

7.1CVSS7.4AI score0.49275EPSS
CVE
CVE
added 2013/01/09 6:0 p.m.187 views

CVE-2013-0007

CVE-2013-0007 impacts Microsoft XML Core Services (MSXML) versions 4.0–6.0. A parsing fault in MSXML can allow remote code execution when a user visits a crafted web page (MSXML XSLT vulnerability). Affected components include MSXML DLLs; root cause is improper XML content parsing. Mitigation is ...

9.3CVSS7.5AI score0.31574EPSS
CVE
CVE
added 2010/09/15 6:0 p.m.183 views

CVE-2010-2729

CVE-2010-2729 is a remote code execution vulnerability in the Windows Print Spooler service. It stems from insufficient validation of spooler access permissions, allowing a remote attacker to create files in a system directory and execute arbitrary code by sending a crafted print request over RPC...

9.3CVSS9.2AI score0.75636EPSS
Web
CVE
CVE
added 2012/08/15 1:0 a.m.183 views

CVE-2012-1851

CVE-2012-1851 is a format string vulnerability in the Windows Print Spooler service that allows remote code execution. Affected: Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, and Windows 7 SP1. Root cause: Print Spooler mishandles crafted response...

10CVSS7.5AI score0.65637EPSS
CVE
CVE
added 2006/08/09 1:0 a.m.182 views

CVE-2006-3439

CVE-2006-3439 is a buffer overflow in the Server Service (SRVSVC) RPC interface that can be triggered by malformed parameters to SRVSVC API functions, enabling remote code execution on affected Windows versions. Public context from connected docs shows exploits and disclosures tied to MS06-040, a...

10CVSS7.3AI score0.85461EPSS
CVE
CVE
added 2012/05/09 12:0 a.m.177 views

CVE-2012-0159

CVE-2012-0159 is a kernel-level remote code execution vulnerability in Microsoft Windows related to TrueType font parsing. The root cause is a sign extension error in the kernel’s handling of TrueType compound glyphs within win32k.sys, which can be triggered by a crafted TTF file. Affected produc...

9.3CVSS7.4AI score0.26816EPSS
CVE
CVE
added 2017/06/22 2:0 p.m.175 views

CVE-2017-0176

CVE-2017-0176 describes a buffer overflow in the Smart Card authentication code (gpkcsp.dll) in Windows XP SP3 and Windows Server 2003 SP2, enabling a remote attacker with RDP/Terminal Services enabled and domain-joined target to execute arbitrary code. The vulnerability arises in the Smart Card ...

9.3CVSS8.3AI score0.45927EPSS
CVE
CVE
added 2011/11/08 9:0 p.m.174 views

CVE-2011-2014

The CVE-2011-2014 entry concerns LDAPS in Active Directory, ADAM, and AD LDS where the LDAPS implementation does not check Certificate Revocation Lists (CRLs). Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2/R2 SP1, and Windows ...

9CVSS6.2AI score0.10965EPSS
CVE
CVE
added 2012/12/12 12:0 a.m.174 views

CVE-2012-4786

CVE-2012-4786 affects Windows kernel-mode drivers handling TrueType/OpenType font parsing. The advisory set shows remote code execution via crafted TTF/OTF files affecting Windows XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, Windows 8, Server 2012, and RT. Root cause...

10CVSS7.4AI score0.24213EPSS
CVE
CVE
added 2013/10/09 2:44 p.m.171 views

CVE-2013-3128

CVE-2013-3128 describes a vulnerability in OpenType font parsing that affects kernel-mode drivers across multiple Windows editions (XP SP2/3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, 8, Server 2012, Windows RT) and certain .NET Framework versions. The issue arises in how Ope...

9.3CVSS7.3AI score0.50374EPSS
CVE
CVE
added 2012/01/10 9:0 p.m.169 views

CVE-2012-0013

CVE-2012-0013 is a remote-code-execution vulnerability in the Windows PackagerClickOnce handling: ClickOnce file types are not included in the Windows Packager unsafe file type list, allowing an attacker to execute arbitrary code via a crafted Office document. Affected OSes include Windows XP SP2...

9.3CVSS7.4AI score0.73753EPSS
CVE
CVE
added 2014/04/08 9:0 p.m.167 views

CVE-2014-0315

CVE-2014-0315 corresponds to the Windows File Handling vulnerability fixed by MS14-019. It is a local privilege-escalation/binary-hijacking issue caused by untrusted search path handling for .bat/.cmd files when CreateProcess() is used and the first token is CMD, which can execute a rogue cmd.exe...

6.9CVSS6.3AI score0.14736EPSS
CVE
CVE
added 2012/11/14 12:0 a.m.166 views

CVE-2012-1527

CVE-2012-1527 corresponds to Windows Shell Briefcase Integer Underflow. The vulnerability arises from an integer underflow in the Briefcase feature of Windows Shell, enabling local privilege escalation for affected Windows editions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Wind...

9.3CVSS6.4AI score0.18163EPSS
CVE
CVE
added 2013/11/12 1:0 a.m.166 views

CVE-2013-3918

CVE-2013-3918 is an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control (icardie.dll) used by Internet Explorer. The flaw exists when the ActiveX control is instantiated via a crafted webpage, enabling remote code execution with the current user’s privileges...

9.3CVSS7.5AI score0.73872EPSS
In wild
CVE
CVE
added 2012/01/10 9:0 p.m.165 views

CVE-2012-0004

CVE-2012-0004 affects Microsoft Windows via the DirectShow/DirectX stack (Quartz.dll, Qdvd.dll, Line21 DirectShow filter) and related components. The vulnerability allows remote attackers to execute arbitrary code by delivering a crafted media file, due to improper handling within DirectShow filt...

9.3CVSS8AI score0.22547EPSS
CVE
CVE
added 2003/03/26 5:0 a.m.162 views

CVE-2002-1561

The CVE-2002-1561 issue affects the Windows RPC service stack (RPC Endpoint Mapper) on Windows 2000, NT 4.0, and XP. A malformed packet to TCP 135 can trigger a NULL pointer dereference in the RPC Endpoint Mapper, causing the RPC service to terminate and resulting in a denial of service for RPC-b...

5CVSS6.6AI score0.42633EPSS
CVE
CVE
added 2009/10/14 10:0 a.m.160 views

CVE-2009-2500

This CVE corresponds to MS09-062: GDI+ WMF Integer Overflow Vulnerability. Affected are Microsoft GDI+ image-processing paths used by WMF, PNG, TIFF, BMP handling across Windows components and Office/Viewer products (e.g., IE6, Office suites, Visio, Project, SQL/Report Viewer, Forefront Client Se...

9.3CVSS7.9AI score0.23647EPSS
CVE
CVE
added 2009/04/15 3:49 a.m.159 views

CVE-2009-0086

CVE-2009-0086 describes an integer underflow in Windows HTTP Services (WinHTTP) that allows remote code execution when a remote server sends crafted values in a response. The vulnerability affects multiple Windows versions, including Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, Vista (Gold/...

10CVSS7.5AI score0.1415EPSS
CVE
CVE
added 2013/11/13 12:0 a.m.159 views

CVE-2013-3869

The CVE-2013-3869 issue affects a broad set of Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, 8.1, Server 2012/R2, and Windows RT). The vulnerability stems from improper handling of X.509 certificates during validation, allowing remote...

5CVSS6.5AI score0.17977EPSS
CVE
CVE
added 2009/10/14 10:0 a.m.157 views

CVE-2009-2528

CVE-2009-2528 is a memory corruption vulnerability in GDI+ used by Microsoft Office XP/2000 when parsing Office Art Property Tables. A crafted Office document can trigger remote code execution. Microsoft Security Bulletin MS09-062 (KB957488) provides patches; apply the MS09-062 updates to remedia...

9.3CVSS7.2AI score0.20452EPSS
CVE
CVE
added 2011/10/12 1:0 a.m.157 views

CVE-2011-2003

CVE-2011-2003 : A buffer overflow in win32k.sys used by kernel-mode drivers across multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 RTM/SP1) can be triggered by a crafted .fon file. The vulnerability arises from an input validation error when the ke...

9.3CVSS7.6AI score0.27772EPSS
CVE
CVE
added 2012/06/12 10:0 p.m.157 views

CVE-2012-0217

CVE-2012-0217 affects the x86-64 kernel sysret path across multiple platforms (Xen 4.1.2 and earlier, XenServer 6.0.2 and earlier, Solaris 11 and earlier, illumos before r13724, FreeBSD before 9.0-RELEASE-p3, NetBSD 6.0 Beta and earlier, Windows Server 2008 R2/R2 SP1/Windows 7 SP1, and others). T...

7.2CVSS6.3AI score0.37212EPSS
CVE
CVE
added 2012/08/15 1:0 a.m.157 views

CVE-2012-1852

The CVE-2012-1852 entry describes a heap-based buffer overflow in the Remote Administration Protocol (RAP) handling within the LanmanWorkstation service on Windows XP SP2/SP3. The flaw allows remote code execution when an attacker sends crafted RAP response packets, enabling arbitrary code execut...

10CVSS8.2AI score0.29027EPSS
CVE
CVE
added 2013/02/13 11:0 a.m.156 views

CVE-2013-0077

The CVE-2013-0077 issue concerns Quartz.dll in DirectShow on Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2). A remote attacker can trigger arbitrary code execution by processing crafted media content (media file, media stream, or an Office document). The vulnerability...

9.3CVSS7.5AI score0.24242EPSS
CVE
CVE
added 2010/04/14 3:44 p.m.155 views

CVE-2010-0268

CVE-2010-0268 describes a remote code execution vulnerability in the Windows Media Player ActiveX control (Windows Media Player 9 Series) on Windows 2000 SP4 and Windows XP SP2/SP3. The issue arises because the ActiveX control incorrectly handles specially crafted media content hosted on a malici...

9.3CVSS8AI score0.20122EPSS
CVE
CVE
added 2004/09/17 4:0 a.m.154 views

CVE-2004-0200

CVE-2004-0200 is a buffer-overflow vulnerability in the JPEG parsing engine of Microsoft GDI+ (GDIPlus.dll). The flaw allows remote code execution when a specially crafted JPEG image is processed, with the attack vector involving JPEG data that is mis-sized during a memory copy. The vulnerability...

9.3CVSS7.6AI score0.49024EPSS
CVE
CVE
added 2010/02/10 6:0 p.m.152 views

CVE-2010-0028

CVE-2010-0028 is a remote code execution vulnerability in Microsoft Paint caused by an integer/heap overflow while decoding JPEG images. Affected software includes Windows 2000 SP4, Windows XP SP2/SP3, and Windows Server 2003 SP2 (Paint decode path). Microsoft released MS10-005 to address the fla...

9.3CVSS7.7AI score0.48452EPSS
Total number of security vulnerabilities738