Microsoft

Windows 2000

517 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2005-3175

  • EPSS 0.27%
  • Veröffentlicht 06.10.2005 10:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to access the session as the domain administrator.

7.5

CVE-2005-3176

  • EPSS 16.3%
  • Veröffentlicht 06.10.2005 10:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not record the IP address of a Windows Terminal Services client in a security log event if the client connects successfully, which could make it easier for attackers to escape detection.

4.6

CVE-2005-3177

  • EPSS 1.02%
  • Veröffentlicht 06.10.2005 10:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descript...

7.5

CVE-2005-0058

  • EPSS 40.46%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to elevate privileges or execute arbitrary code via a cr...

5

CVE-2005-1218

  • EPSS 78.31%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.

2.1

CVE-2005-1981

  • EPSS 1.94%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.

3.6

CVE-2005-1982

  • EPSS 1.14%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain control...

10

CVE-2005-1983

  • EPSS 87.72%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious applica...

7.5

CVE-2005-1984

  • EPSS 26.91%
  • Veröffentlicht 10.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

7.2

CVE-2005-2388

  • EPSS 1.24%
  • Veröffentlicht 27.07.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in a certain USB driver, as used on Microsoft Windows, allows attackers to execute arbitrary code.