Microsoft

Windows 2000

517 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2005-3175

  • EPSS 0.27%
  • Published 06.10.2005 10:02:00
  • Last modified 03.04.2025 01:03:51

Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to access the session as the domain administrator.

7.5

CVE-2005-3176

  • EPSS 16.3%
  • Published 06.10.2005 10:02:00
  • Last modified 03.04.2025 01:03:51

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not record the IP address of a Windows Terminal Services client in a security log event if the client connects successfully, which could make it easier for attackers to escape detection.

4.6

CVE-2005-3177

  • EPSS 1.02%
  • Published 06.10.2005 10:02:00
  • Last modified 03.04.2025 01:03:51

CHKDSK in Microsoft Windows 2000 before Update Rollup 1 for SP4, Windows XP, and Windows Server 2003, when running in fix mode, does not properly handle security descriptors if the master file table contains a large number of files or if the descript...

7.5

CVE-2005-0058

  • EPSS 40.46%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to elevate privileges or execute arbitrary code via a cr...

5

CVE-2005-1218

  • EPSS 78.31%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.

2.1

CVE-2005-1981

  • EPSS 1.94%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.

3.6

CVE-2005-1982

  • EPSS 1.14%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain control...

10

CVE-2005-1983

  • EPSS 87.72%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious applica...

7.5

CVE-2005-1984

  • EPSS 26.91%
  • Published 10.08.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

7.2

CVE-2005-2388

  • EPSS 1.24%
  • Published 27.07.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in a certain USB driver, as used on Microsoft Windows, allows attackers to execute arbitrary code.