Windows Xp Security Vulnerabilities and Issues — Windows Xp CVE List

Lucene search

MicrosoftWindows Xp

11 matches found

CVE•added 2005/08/10 4:0 a.m.•63 views

CVE-2005-1984

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

7.5CVSS7.7AI score0.31431EPSS

CVE•added 2005/08/16 4:0 a.m.•60 views

CVE-2004-2339

Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function, which does not verify its pointer arguments. Note: this issue has been disputed, since Admi...

8.4CVSS7.7AI score0.01309EPSS

CVE•added 2005/08/10 4:0 a.m.•54 views

CVE-2005-0058

Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to elevate privileges or execute arbitrary code via a crafted message.

7.5CVSS7.4AI score0.22011EPSS

CVE•added 2005/08/10 4:0 a.m.•52 views

CVE-2005-1983

Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious application, as exploited by the Zotob (aka Mytob) worm.

10CVSS7.6AI score0.87815EPSS

CVE•added 2005/08/04 4:0 a.m.•49 views

CVE-2004-2289

Microsoft Windows XP Explorer allows local users to execute arbitrary code via a system folder with a Desktop.ini file containing a .ShellClassInfo specifier with a CLSID value that is associated with an executable file.

10CVSS7.2AI score0.15055EPSS

CVE•added 2005/08/10 4:0 a.m.•47 views

CVE-2005-1218

The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.

5CVSS6.4AI score0.603EPSS

CVE•added 2005/08/16 4:0 a.m.•42 views

CVE-2004-2307

Microsoft Internet Explorer 6.0.2600 on Windows XP allows remote attackers to cause a denial of service (browser crash) via a shell: URI with double backslashes (\) in an HTML tag such as IFRAME or A.

5CVSS6.8AI score0.11734EPSS

CVE•added 2005/08/05 4:0 a.m.•41 views

CVE-2002-2105

Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.

2.1CVSS6.5AI score0.00392EPSS

CVE•added 2005/08/05 4:0 a.m.•40 views

CVE-2002-2117

Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP).

5CVSS7AI score0.14349EPSS

CVE•added 2005/08/10 4:0 a.m.•40 views

CVE-2005-1982

Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain controller when PKINIT smart card authentication is bein...

3.6CVSS6AI score0.00906EPSS

CVE•added 2005/08/16 4:0 a.m.•38 views

CVE-2004-2365

Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial of service (memory exhaustion) by repeatedly creating and deleting directories using a non-standard tool such as smbmount.

2.1CVSS6.6AI score0.00237EPSS