CVE-2007-0026
- EPSS 24.64%
- Veröffentlicht 13.02.2007 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:34:44
The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption.
CVE-2007-0214
- EPSS 26.37%
- Veröffentlicht 13.02.2007 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:35:08
The HTML Help ActiveX control (Hhctrl.ocx) in Microsoft Windows 2000 SP3, XP SP2 and Professional, 2003 SP1 allows remote attackers to execute arbitrary code via unspecified functions, related to uninitialized parameters.
CVE-2006-6723
- EPSS 37.98%
- Veröffentlicht 26.12.2006 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:40
The Workstation service in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to cause a denial of service (memory consumption) via a large maxlen value in an NetrWkstaUserEnum RPC request.
CVE-2006-6696
- EPSS 3.28%
- Veröffentlicht 22.12.2006 02:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:37
Double free vulnerability in Microsoft Windows 2000, XP, 2003, and Vista allows local users to gain privileges by calling the MessageBox function with a MB_SERVICE_NOTIFICATION message with crafted data, which sends a HardError message to Client/Serv...
CVE-2006-5584
- EPSS 30.45%
- Veröffentlicht 13.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:31:28
The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows anonymous access, which allows remote attackers to upload and overwrite arbitrary files to gain privileges on systems that use RIS.
CVE-2006-6296
- EPSS 23.57%
- Veröffentlicht 05.12.2006 11:28:00
- Zuletzt bearbeitet 16.06.2026 22:32:52
The RpcGetPrinterData function in the Print Spooler (spoolsv.exe) service in Microsoft Windows 2000 SP4 and earlier, and possibly Windows XP SP1 and earlier, allows remote attackers to cause a denial of service (memory consumption) via an RPC request...
- EPSS 12.55%
- Veröffentlicht 20.11.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:32:15
Unspecified vulnerability in Windows 2000 Advanced Server SP4 running Active Directory allows remote attackers to cause a denial of service via unknown vectors, as demonstrated by a certain VulnDisco Pack module. NOTE: the provenance of this informa...
CVE-2006-4688
- EPSS 76.88%
- Veröffentlicht 14.11.2006 22:07:00
- Zuletzt bearbeitet 16.06.2026 22:29:35
Buffer overflow in Client Service for NetWare (CSNW) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via crafted messages, aka "Client Service for NetWare Memory Corruption Vulnerabil...
- EPSS 34.46%
- Veröffentlicht 14.11.2006 22:07:00
- Zuletzt bearbeitet 16.06.2026 22:29:35
Unspecified vulnerability in the driver for the Client Service for NetWare (CSNW) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to cause a denial of service (hang and reboot) via has unknown attack vectors, ...
CVE-2006-3445
- EPSS 40.14%
- Veröffentlicht 14.11.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:27:04
Integer overflow in the ReadWideString function in agentdpv.dll in Microsoft Agent on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a large length value in an .ACF file, which resu...