Microsoft

Windows 2000

517 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2003-0345

  • EPSS 62.1%
  • Published 18.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the SMB capability for Microsoft Windows XP, 2000, and NT allows remote attackers to cause a denial of service and possibly execute arbitrary code via an SMB packet that specifies a smaller buffer length than is required.

4.6

CVE-2003-0350

  • EPSS 0.63%
  • Published 18.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility M...

7.5

CVE-2003-0352

Exploit
  • EPSS 90.17%
  • Published 18.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

7.2

CVE-2003-0496

Exploit
  • EPSS 1.64%
  • Published 18.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file.

7.5

CVE-2003-0469

  • EPSS 81.95%
  • Published 07.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer...

7.5

CVE-2003-0503

  • EPSS 28.07%
  • Published 07.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the ShellExecute API function of SHELL32.DLL in Windows 2000 before SP4 may allow attackers to cause a denial of service or execute arbitrary code via a long third argument.

7.5

CVE-2003-0507

  • EPSS 56.33%
  • Published 07.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Stack-based buffer overflow in Active Directory in Windows 2000 before SP4 allows remote attackers to cause a denial of service (reboot) and possibly execute arbitrary code via an LDAP version 3 search request with a large number of (1) "AND," (2) "O...

7.5

CVE-2003-0349

Exploit
  • EPSS 87.98%
  • Published 24.07.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via...

5

CVE-2003-0227

  • EPSS 70.52%
  • Published 09.06.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Informatio...

4.6

CVE-2003-0112

  • EPSS 4.29%
  • Published 12.05.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Windows Kernel allows local users to gain privileges by causing certain error messages to be passed to a debugger.