Windows Xp@- Security Vulnerabilities and Issues — Page 8 of Windows Xp@- CVE List

Lucene search

MicrosoftWindows Xp-

367 matches found

CVE•added 2011/04/13 8:26 p.m.•43 views

CVE-2011-1232

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers a NULL pointer deref...

7.2CVSS6.4AI score0.00845EPSS

CVE•added 2011/12/14 12:55 a.m.•43 views

CVE-2011-3401

ENCDEC.DLL in Windows Media Player and Media Center in Microsoft Windows XP SP2 and SP3, Windows Vista SP2, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .dvr-ms file, aka "Windows Media Player DVR-MS Memory Corruption Vulnerability."

9.3CVSS7.5AI score0.51783EPSS

CVE•added 2012/06/12 10:55 p.m.•43 views

CVE-2012-1866

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle user-mode input passed to kernel mode for driver objects, which allows local users to g...

7.2CVSS6.3AI score0.00872EPSS

CVE•added 2013/02/13 12:4 p.m.•43 views

CVE-2013-1269

Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel ...

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•43 views

CVE-2013-1276

4.9CVSS6.4AI score0.00366EPSS

CVE•added 2009/08/12 5:30 p.m.•42 views

CVE-2009-1545

Unspecified vulnerability in Avifil32.dll in the Windows Media file handling functionality in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a malformed header in a crafted AVI...

9.3CVSS7.5AI score0.57802EPSS

CVE•added 2009/12/13 1:30 a.m.•42 views

CVE-2009-4210

The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted media content.

9.3CVSS7.3AI score0.22332EPSS

CVE•added 2011/04/13 6:55 p.m.•42 views

CVE-2011-0666

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application th...

7.2CVSS6.5AI score0.00623EPSS

CVE•added 2013/09/11 2:3 p.m.•42 views

CVE-2013-3863

Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via a crafted OLE object in a file, aka "OLE Property Vulnerability."

9.3CVSS7.5AI score0.45912EPSS

CVE•added 2009/08/12 5:30 p.m.•41 views

CVE-2009-1922

The Message Queuing (aka MSMQ) service for Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP2, and Vista Gold does not properly validate unspecified IOCTL request data from user mode before passing this data to kernel mode, which allows local users to gain privileges via a crafted request, aka "MS...

6.9CVSS6.3AI score0.0158EPSS

CVE•added 2008/09/30 4:13 p.m.•40 views

CVE-2008-4327

gdiplus.dll in GDI+ in Microsoft Windows XP SP3 does not properly handle crafted .ico files, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a certain crash.ico file on a web site, and allows user-assisted attackers to cause a denial of se...

4.3CVSS5.3AI score0.64581EPSS

CVE•added 2010/04/14 4:0 p.m.•40 views

CVE-2010-0238

Unspecified vulnerability in registry-key validation in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Vista Gold allows local users to cause a denial of service (reboot) via a crafted application, aka "Windows Kernel Registry Key Vulnerability."

4.9CVSS6AI score0.01209EPSS

CVE•added 2013/02/13 12:4 p.m.•40 views

CVE-2013-1268

4.9CVSS6.4AI score0.00445EPSS

CVE•added 2013/02/13 12:4 p.m.•39 views

CVE-2013-1265

7CVSS6.3AI score0.003EPSS

CVE•added 2010/09/15 7:0 p.m.•38 views

CVE-2010-0818

The MPEG-4 codec in the Windows Media codecs in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 does not properly handle crafted media content with MPEG-4 video encoding, which allows remote attackers to execute arbitrary code via a file in an unsp...

9.3CVSS7.6AI score0.29882EPSS

CVE•added 2010/12/16 7:33 p.m.•38 views

CVE-2010-3957

Double free vulnerability in the OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a crafted OpenType font, aka "OpenType Font Double Free...

7.3CVSS6.4AI score0.04043EPSS

CVE•added 2013/02/13 12:4 p.m.•35 views

CVE-2013-1270

4.9CVSS6.4AI score0.00434EPSS

Total number of security vulnerabilities367