Lucene search
K

368 matches found

CVE
CVE
added 2010/07/22 10:0 a.m.1700 views

CVE-2010-2568

CVE-2010-2568 affects the Windows shell icon display for shortcut files, enabling arbitrary code execution when a crafted .LNK or .PIF is processed by Windows Explorer. Affected systems include Windows XP SP3, Server 2003 SP2, Windows Vista SP1/SP2, Windows Server 2008 SP2/R2, and Windows 7, with...

9.3CVSS7.7AI score0.91324EPSS
In wild
CVE
CVE
added 2012/04/10 9:0 p.m.1125 views

CVE-2012-0151

CVE-2012-0151 : A vulnerability in the Windows Authenticode Signature Verification (WinVerifyTrust) function (affecting Windows XP SP2/XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1, and Windows 8 Consumer Preview) fails to properly validate the dige...

9.3CVSS5.8AI score0.8878EPSS
In wild
CVE
CVE
added 2013/11/27 11:0 p.m.1086 views

CVE-2013-5065

NDProxy.sys in the Windows kernel is affected by a local privilege escalation flaw (CVE-2013-5065) caused by improper input validation in the NDPROXY driver. A crafted IOCTL path allows a local attacker to exploit a NULL pointer dereference to escalate privileges on affected systems. Public explo...

7.8CVSS6.3AI score0.34893EPSS
In wild
CVE
CVE
added 2010/12/03 8:0 p.m.1056 views

CVE-2010-4398

CVE-2010-4398 is a stack-based buffer overflow in win32k.sys (RtlQueryRegistryValues) that enables local privilege escalation and UAC bypass across multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 SP2/R2, and Windows 7). The vulnerability is triggered by a craft...

7.8CVSS6.8AI score0.08661EPSS
In wild
CVE
CVE
added 2010/01/21 7:0 p.m.1047 views

CVE-2010-0232

CVE-2010-0232 is a Windows kernel elevation-of-privilege vulnerability affecting 16‑bit BIOS call handling in NTVDM. When 16‑bit app access is enabled on 32‑bit x86, the kernel fails to validate certain BIOS calls, allowing a local user to craft a VDM_TIB in the TEB and trigger the NTVDM NtVdmCon...

7.8CVSS6.2AI score0.29253EPSS
In wild
CVE
CVE
added 2013/05/24 8:0 p.m.1047 views

CVE-2013-3660

CVE-2013-3660 describes a local privilege-escalation in Microsoft Windows via Win32k.sys (EPATHOBJ::pprFlattenRec) where a pointer for the next object in a PATHREC list is not properly initialized. According to the CVE description and linked documents, local users could gain write access to the P...

7.8CVSS6.5AI score0.39578EPSS
In wild
CVE
CVE
added 2011/10/12 1:0 a.m.1017 views

CVE-2011-2005

CVE-2011-2005 : Afd.sys in the Microsoft Windows XP (SP2/SP3) and Server 2003 (SP2) Ancillary Function Driver fails to properly validate user‑mode input before passing to kernel mode, enabling local privilege escalation. Exploitation climbs from a crafted user‑mode application to SYSTEM privilege...

7.8CVSS6.2AI score0.31761EPSS
In wild
CVE
CVE
added 2009/06/10 6:0 p.m.1010 views

CVE-2009-1123

CVE-2009-1123 describes a Windows kernel local privilege escalation: Windows 2000 SP4; XP SP2/SP3; Server 2003 SP2; Vista (Gold/SP1/SP2); Server 2008 SP2 fail to validate changes to certain kernel objects, allowing local users to gain privileges via a crafted application. Affected components: ker...

7.8CVSS6.2AI score0.04918EPSS
In wildWeb
CVE
CVE
added 2004/05/05 4:0 a.m.812 views

CVE-2004-0230

Technical details beyond the public description are not provided in the supplied documents. CVE-2004-0230 describes a TCP sequence-number guessing/RST-injection denial-of-service under large window size; no remediation details are given here.

5CVSS9.1AI score0.80855EPSS
CVE
CVE
added 2008/10/23 9:0 p.m.667 views

CVE-2008-4250

The CVE-2008-4250 issue is a remote code execution vulnerability in the Windows Server Service. The root cause is a buffer/overflow in the path canonicalization logic (triggered via crafted RPC requests to NetAPI32/Server Service), affecting Windows versions listed in the entry (e.g., Windows 200...

10CVSS9.5AI score0.98751EPSS
In wild
CVE
CVE
added 2008/10/20 5:0 p.m.522 views

CVE-2008-4609

CVE-2008-4609 is a TCP state-exhaustion DoS vulnerability demonstrated by sockstress. It was described as affecting the TCP implementation in Linux, BSD-based platforms, Windows, Cisco products, and probably others. The issue enables a remote attacker to exhaust connection state, potentially rend...

7.1CVSS8.8AI score0.32123EPSS
CVE
CVE
added 2012/03/13 9:0 p.m.352 views

CVE-2012-0002

CVE-2012-0002 is a Remote Desktop Protocol memory-processing vulnerability in affected Windows platforms (Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1). The flaw permits remote code execution by sending specially crafted RDP packets tha...

9.3CVSS9.5AI score0.73924EPSS
CVE
CVE
added 2017/06/15 8:0 p.m.344 views

CVE-2017-8461

CVE-2017-8461 affects Windows XP and Windows Server 2003, enabling remote code execution through the RRAS service. The vulnerability is a MIBEntryGet/overflow in RRAS’s DCERPC endpoint, exploitable via a crafted application and unauthenticated access on affected OS versions. Public details note e...

7.8CVSS7.7AI score0.21108EPSS
CVE
CVE
added 2009/10/14 10:0 a.m.270 views

CVE-2009-2524

CVE-2009-2524 refers to an Integer Overflow in LSASS during NTLM authentication in multiple Windows versions. A malformed NTLM packet can cause LSASS to crash and reboot the host, i.e., a denial-of-service condition. Affected software includes Windows XP SP2/SP3, Windows Server 2003 SP2, Windows ...

7.8CVSS6.5AI score0.28261EPSS
CVE
CVE
added 2011/04/13 6:0 p.m.234 views

CVE-2011-0657

CVE-2011-0657 affects the DNSAPI.dll DNS client in multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, Windows 7 SP1). Root cause: improper processing of DNS queries by the DNS client, enabling remote attackers to run arbitrary code via (1) a crafted L...

9.8CVSS7.6AI score0.63335EPSS
CVE
CVE
added 2013/09/11 10:0 a.m.226 views

CVE-2013-0810

CVE-2013-0810 affects Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, and Windows Server 2008 SP2. Attackers could trigger remote code execution by delivering a crafted theme file containing a malicious screensaver. The root cause is improper handling of screensaver/theme data, al...

9.3CVSS7.7AI score0.59885EPSS
Web
CVE
CVE
added 2010/04/14 3:44 p.m.210 views

CVE-2010-0480

CVE-2010-0480 is a remote code execution vulnerability in Microsoft MPEG Layer-3 codecs. The issue arises from multiple stack-based buffer overflows in the MPEG Layer-3 audio decoders (l3codecx.ax and related ACM codecs) when processing crafted AVI files, affecting Windows 2000 SP4, XP SP2/SP3, S...

9.3CVSS7.5AI score0.67888EPSS
Web
CVE
CVE
added 2013/01/09 6:0 p.m.186 views

CVE-2013-0007

CVE-2013-0007 impacts Microsoft XML Core Services (MSXML) versions 4.0–6.0. A parsing fault in MSXML can allow remote code execution when a user visits a crafted web page (MSXML XSLT vulnerability). Affected components include MSXML DLLs; root cause is improper XML content parsing. Mitigation is ...

9.3CVSS7.5AI score0.31574EPSS
CVE
CVE
added 2010/09/15 6:0 p.m.182 views

CVE-2010-2729

CVE-2010-2729 is a remote code execution vulnerability in the Windows Print Spooler service. It stems from insufficient validation of spooler access permissions, allowing a remote attacker to create files in a system directory and execute arbitrary code by sending a crafted print request over RPC...

9.3CVSS9.2AI score0.75636EPSS
Web
CVE
CVE
added 2012/08/15 1:0 a.m.182 views

CVE-2012-1851

CVE-2012-1851 is a format string vulnerability in the Windows Print Spooler service that allows remote code execution. Affected: Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, and Windows 7 SP1. Root cause: Print Spooler mishandles crafted response...

10CVSS7.5AI score0.65637EPSS
CVE
CVE
added 2011/11/08 9:0 p.m.173 views

CVE-2011-2014

The CVE-2011-2014 entry concerns LDAPS in Active Directory, ADAM, and AD LDS where the LDAPS implementation does not check Certificate Revocation Lists (CRLs). Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2/R2 SP1, and Windows ...

9CVSS6.2AI score0.10965EPSS
CVE
CVE
added 2013/10/09 2:44 p.m.171 views

CVE-2013-3128

CVE-2013-3128 describes a vulnerability in OpenType font parsing that affects kernel-mode drivers across multiple Windows editions (XP SP2/3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, 8, Server 2012, Windows RT) and certain .NET Framework versions. The issue arises in how Ope...

9.3CVSS7.3AI score0.50374EPSS
CVE
CVE
added 2014/04/08 9:0 p.m.167 views

CVE-2014-0315

CVE-2014-0315 corresponds to the Windows File Handling vulnerability fixed by MS14-019. It is a local privilege-escalation/binary-hijacking issue caused by untrusted search path handling for .bat/.cmd files when CreateProcess() is used and the first token is CMD, which can execute a rogue cmd.exe...

6.9CVSS6.3AI score0.14736EPSS
CVE
CVE
added 2012/11/14 12:0 a.m.166 views

CVE-2012-1527

CVE-2012-1527 corresponds to Windows Shell Briefcase Integer Underflow. The vulnerability arises from an integer underflow in the Briefcase feature of Windows Shell, enabling local privilege escalation for affected Windows editions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Wind...

9.3CVSS6.4AI score0.18163EPSS
CVE
CVE
added 2012/01/10 9:0 p.m.165 views

CVE-2012-0004

CVE-2012-0004 affects Microsoft Windows via the DirectShow/DirectX stack (Quartz.dll, Qdvd.dll, Line21 DirectShow filter) and related components. The vulnerability allows remote attackers to execute arbitrary code by delivering a crafted media file, due to improper handling within DirectShow filt...

9.3CVSS8AI score0.22547EPSS
CVE
CVE
added 2013/11/12 1:0 a.m.165 views

CVE-2013-3918

CVE-2013-3918 is an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control (icardie.dll) used by Internet Explorer. The flaw exists when the ActiveX control is instantiated via a crafted webpage, enabling remote code execution with the current user’s privileges...

9.3CVSS7.5AI score0.73872EPSS
In wild
CVE
CVE
added 2013/11/13 12:0 a.m.159 views

CVE-2013-3869

The CVE-2013-3869 issue affects a broad set of Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, 8.1, Server 2012/R2, and Windows RT). The vulnerability stems from improper handling of X.509 certificates during validation, allowing remote...

5CVSS6.5AI score0.17977EPSS
CVE
CVE
added 2011/10/12 1:0 a.m.157 views

CVE-2011-2003

CVE-2011-2003 : A buffer overflow in win32k.sys used by kernel-mode drivers across multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 RTM/SP1) can be triggered by a crafted .fon file. The vulnerability arises from an input validation error when the ke...

9.3CVSS7.6AI score0.27772EPSS
CVE
CVE
added 2012/08/15 1:0 a.m.157 views

CVE-2012-1852

The CVE-2012-1852 entry describes a heap-based buffer overflow in the Remote Administration Protocol (RAP) handling within the LanmanWorkstation service on Windows XP SP2/SP3. The flaw allows remote code execution when an attacker sends crafted RAP response packets, enabling arbitrary code execut...

10CVSS8.2AI score0.29027EPSS
CVE
CVE
added 2013/02/13 11:0 a.m.156 views

CVE-2013-0077

The CVE-2013-0077 issue concerns Quartz.dll in DirectShow on Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2). A remote attacker can trigger arbitrary code execution by processing crafted media content (media file, media stream, or an Office document). The vulnerability...

9.3CVSS7.5AI score0.24242EPSS
CVE
CVE
added 2010/02/10 6:0 p.m.151 views

CVE-2010-0028

CVE-2010-0028 is a remote code execution vulnerability in Microsoft Paint caused by an integer/heap overflow while decoding JPEG images. Affected software includes Windows 2000 SP4, Windows XP SP2/SP3, and Windows Server 2003 SP2 (Paint decode path). Microsoft released MS10-005 to address the fla...

9.3CVSS7.7AI score0.48452EPSS
CVE
CVE
added 2010/02/10 6:0 p.m.151 views

CVE-2010-0231

CVE-2010-0231 involves the SMB server’s NTLM authentication on Windows 2000/XP/2003/Vista/Server 2008/7 where insufficient entropy in server-generated challenges (duplicate NTLM nonces) allows remote attackers to access files and SMB resources after many authentication requests. Root cause: weak ...

10CVSS9AI score0.41262EPSS
CVE
CVE
added 2012/07/10 9:0 p.m.151 views

CVE-2012-0175

CVE-2012-0175 corresponds to a Windows Shell remote code execution vulnerability caused by how Windows handles specially crafted file or directory names. The issue affects multiple Windows editions, including Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/...

9.3CVSS7.8AI score0.2621EPSS
CVE
CVE
added 2012/12/12 12:0 a.m.148 views

CVE-2012-4774

CVE-2012-4774 is a Windows File Handling Component vulnerability. A crafted file or subfolder name can trigger use of unallocated memory as the destination of a copy operation, enabling remote code execution on affected Windows XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, and Windo...

9.3CVSS7.5AI score0.20766EPSS
CVE
CVE
added 2013/12/11 12:0 a.m.148 views

CVE-2013-5056

The CVE-2013-5056 issue is a use-after-free vulnerability in the Microsoft Scripting Runtime Object Library (scrrun.dll) that allows remote code execution when a user visits a crafted website via Internet Explorer. Affected products span multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vis...

9.3CVSS7.3AI score0.20353EPSS
CVE
CVE
added 2019/12/10 9:41 p.m.148 views

CVE-2019-1489

CVE-2019-1489 is an information disclosure vulnerability in Windows Remote Desktop Protocol (RDP). Public sources describe memory handling faults that can allow an attacker to obtain sensitive information by remote connection and running a crafted application. The advisory/tracking entries note a...

7.5CVSS7.4AI score0.07736EPSS
CVE
CVE
added 2010/02/10 6:0 p.m.147 views

CVE-2010-0020

CVE-2010-0020 concerns a flaw in the SMB server implementation of Windows: the Server service fails to validate request fields, enabling a remote authenticated user to execute arbitrary code via a malformed SMB request. Affected platforms include Windows 2000 SP4, XP SP2/SP3, Server 2003 SP2, Vis...

9CVSS7.1AI score0.32032EPSS
CVE
CVE
added 2009/08/12 5:0 p.m.145 views

CVE-2009-1930

The CVE-2009-1930 entry describes a Telnet Credential Reflection vulnerability in Windows Telnet service. A remote attacker could trigger arbitrary code execution by replaying NTLM credentials from a client to the Telnet server. Affected products include Windows 2000 (SP4), XP (SP2/SP3), Server 2...

10CVSS7.5AI score0.41388EPSS
CVE
CVE
added 2010/08/11 6:0 p.m.140 views

CVE-2010-2550

CVE-2010-2550 affects the SMB Server in multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 SP2/R2, Windows 7). The root cause is improper validation of fields in an SMB request, allowing remote code execution via a crafted SMB packet (aka “SMB Pool Overflow Vulnera...

10CVSS9.3AI score0.7572EPSS
Web
CVE
CVE
added 2010/12/16 7:0 p.m.140 views

CVE-2010-3956

CVE-2010-3956 concerns the OpenType Font (OTF) driver in multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, and Windows 7). The vulnerability arises from an error in indexing an array when parsing OpenType fonts, enabling a local privilege escalation....

9.3CVSS6.3AI score0.08274EPSS
CVE
CVE
added 2008/09/10 3:0 p.m.139 views

CVE-2007-5348

The CVE-2007-5348 entry concerns an IMAGE processing vulnerability in Microsoft GDI+ that could enable remote code execution. The connected KB954593 article MS08-052 describes multiple vulnerabilities in GDI+ across Windows and Office components that could be exploited by viewing a specially craf...

9.3CVSS8AI score0.52886EPSS
CVE
CVE
added 2012/11/14 12:0 a.m.137 views

CVE-2012-1528

CVE-2012-1528 is a Windows Shell vulnerability originating from an integer overflow in the Briefcase feature. The flaw affects multiple Windows client/server platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008/R2 SP, Windows 7 SP1, Windows 8, Server 2012) and can let local users gain p...

9.3CVSS6.6AI score0.18163EPSS
CVE
CVE
added 2013/01/09 6:0 p.m.137 views

CVE-2013-0006

CVE-2013-0006 is associated with OSIsoft PI Interface for OPC XML-DA (ICS advisory ICSA-20-315-01) and Microsoft MSXML/MS13-002 context. Connected documents identify the affected product as PI Interface for OPC XML-DA versions prior to 1.7.3.x, where the vulnerability stems from numeric errors/st...

9.3CVSS7.5AI score0.28084EPSS
CVE
CVE
added 2011/11/04 9:0 p.m.135 views

CVE-2011-3402

CVE-2011-3402 is a Windows kernel‑mode vulnerability in the TrueType font parsing engine of win32k.sys that allows remote code execution via crafted font data in Word/web content. The issue affects multiple Windows versions (XP/Server 2003, Vista/Server 2008, Windows 7 and Windows 7/Server 2008 R...

9.3CVSS7.4AI score0.78285EPSS
In wild
CVE
CVE
added 2009/10/14 10:0 a.m.132 views

CVE-2009-2507

CVE-2009-2507 describes a remote code execution via an ActiveX control in the Microsoft Windows Indexing Service. The vulnerability arises because the Indexing Service ActiveX component does not properly handle specially crafted URLs, enabling a remote attacker to load/execute arbitrary code on a...

9.3CVSS7.1AI score0.19291EPSS
CVE
CVE
added 2009/10/14 10:0 a.m.131 views

CVE-2009-0090

CVE-2009-0090 corresponds to a high-severity remote code execution vulnerability in Microsoft .NET Framework. The issue arises because .NET Framework versions 1.0 SP3, 1.1 SP1 and 2.0 SP1 do not properly validate verifiable code, enabling a remote attacker to execute arbitrary code and read stack...

9.3CVSS9.4AI score0.20982EPSS
CVE
CVE
added 2010/02/10 6:0 p.m.124 views

CVE-2010-0022

CVE-2010-0022 is part of the SMB server NTLM vulnerabilities addressed by Microsoft MS10-012. The XP/2000/2003/Vista/2008/7 SMB server implementation fails to properly validate shared/servername fields in SMB packets, allowing remote attackers to cause a denial of service (system hang) via a craf...

7.8CVSS6.3AI score0.79499EPSS
CVE
CVE
added 2009/08/12 5:0 p.m.123 views

CVE-2009-1133

CVE-2009-1133 corresponds to a heap-based buffer overflow in Microsoft Remote Desktop Connection (mstsc/ mstscax.dll) affecting RDP clients (RDP 5.0–6.1 on Windows and Mac 2.0). The underlying flaw occurs during parsing of data from the RDP server, allowing a remote attacker to execute arbitrary ...

9.3CVSS8.2AI score0.30496EPSS
CVE
CVE
added 2011/06/16 8:21 p.m.123 views

CVE-2011-1249

CVE-2011-1249 concerns the Ancillary Function Driver (afd.sys) in Windows, where local input validation flaws allow privilege escalation. Affected OSes include Windows XP SP2/SP3, Server 2003 SP2, Windows Vista SP1/SP2, Server 2008 (Gold/SP2/R2), and Windows 7 (Gold/SP1). The vulnerability stems ...

7.2CVSS6.3AI score0.08488EPSS
CVE
CVE
added 2012/06/12 10:0 p.m.122 views

CVE-2012-0173

Technical details for CVE-2012-0173 are not provided in the connected documents. The materials reference CVE-2012-0002 and MS12-020 but do not disclose specifics for CVE-2012-0173. Monitor for updates.

9.3CVSS9.4AI score0.20933EPSS
Web
Total number of security vulnerabilities368