Windows Xp Security Vulnerabilities and Issues — Windows Xp CVE List

Lucene search

MicrosoftWindows Xp

9 matches found

CVE•added 2006/12/05 11:28 a.m.•114 views

CVE-2006-6296

The RpcGetPrinterData function in the Print Spooler (spoolsv.exe) service in Microsoft Windows 2000 SP4 and earlier, and possibly Windows XP SP1 and earlier, allows remote attackers to cause a denial of service (memory consumption) via an RPC request that specifies a large 'offered' value (output b...

6.1CVSS6.6AI score0.62107EPSS

CVE•added 2006/12/22 2:28 a.m.•70 views

CVE-2006-6696

Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Server Runtime Server Subsystem (CSRSS) process, whic...

6.9CVSS6.2AI score0.08564EPSS

CVE•added 2006/12/28 3:28 p.m.•54 views

CVE-2006-6797

The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseHardError function with status 0x50000018, a different vulnerability than CVE-2006-6696.

6.6CVSS6.2AI score0.08564EPSS

CVE•added 2006/12/13 1:28 a.m.•46 views

CVE-2006-4702

Buffer overflow in the Windows Media Format Runtime in Microsoft Windows Media Player (WMP) 6.4 and Windows XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted Advanced Systems Format (ASF) file.

6.8CVSS7.6AI score0.55721EPSS

CVE•added 2006/12/20 2:28 a.m.•46 views

CVE-2006-6659

The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.

5CVSS6.9AI score0.23391EPSS

CVE•added 2006/12/15 10:28 p.m.•41 views

CVE-2006-6602

explorer.exe in Windows Explorer 6.00.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a crafted WMV file.

4.3CVSS6.8AI score0.39916EPSS

CVE•added 2006/12/15 10:28 p.m.•40 views

CVE-2006-6601

Windows Media Player 10.00.00.4036 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a .MID (MIDI) file with a malformed header chunk without any track chunks, possibly involving (1) number of tracks of (2) time division fields that are set to 0.

4.3CVSS7AI score0.4361EPSS

CVE•added 2006/12/26 8:28 p.m.•40 views

CVE-2006-6723

The Workstation service in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to cause a denial of service (memory consumption) via a large maxlen value in an NetrWkstaUserEnum RPC request.

7.8CVSS6.6AI score0.53079EPSS

CVE•added 2006/12/13 1:28 a.m.•35 views

CVE-2006-5585

The Client-Server Run-time Subsystem in Microsoft Windows XP SP2 and Server 2003 allows local users to gain privileges via a crafted file manifest within an application, aka "File Manifest Corruption Vulnerability."

7.2CVSS6.4AI score0.00753EPSS