CVE-2010-0917
- EPSS 24.32%
- Veröffentlicht 03.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:17:07
Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument ...
CVE-2010-0719
- EPSS 1.84%
- Veröffentlicht 26.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:42
An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7 does not validate arguments, which allows local users to cause a denial of service (system crash) via a crafted applicati...
CVE-2010-0022
- EPSS 79.5%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:15
The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate the share a...
CVE-2010-0023
- EPSS 1.81%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:15
The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly kill processes after a logout, which allows local users to obtain sensitive information or gain privileges via a crafted...
CVE-2010-0028
- EPSS 48.45%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:16
Integer overflow in Microsoft Paint in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted JPEG (.JPG) file, aka "MS Paint Integer Overflow Vulnerability."
CVE-2010-0035
- EPSS 17.43%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:16
The Key Distribution Center (KDC) in Kerberos in Microsoft Windows 2000 SP4, Server 2003 SP2, and Server 2008 Gold and SP2, when a trust relationship with a non-Windows Kerberos realm exists, allows remote authenticated users to cause a denial of ser...
- EPSS 41.26%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:45
The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not use a sufficient source of en...
CVE-2010-0233
- EPSS 2.7%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:45
Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows local users to gain privileges via a crafted application, aka "Windows Kernel Double...
CVE-2010-0252
- EPSS 28.76%
- Veröffentlicht 10.02.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:47
The Microsoft Data Analyzer ActiveX control (aka the Office Excel ActiveX control for Data Analysis) in max3activex.dll in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2...
CVE-2010-0016
- EPSS 8.67%
- Veröffentlicht 10.02.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:14
The SMB client implementation in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly validate response fields, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted respo...