Microsoft

Windows Vista

827 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 45.46%
  • Veröffentlicht 30.12.2011 19:55:01
  • Zuletzt bearbeitet 16.06.2026 23:35:50

The Graphics Device Interface (GDI) in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly valida...

  • EPSS 58.9%
  • Veröffentlicht 30.12.2011 01:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:15

The CaseInsensitiveHashProvider.getHashCode function in the HashTable implementation in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 computes hash values for form parameters without restricting the abili...

  • EPSS 24.14%
  • Veröffentlicht 30.12.2011 01:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:15

Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a ...

  • EPSS 45.58%
  • Veröffentlicht 30.12.2011 01:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:15

The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote authenticated users to obtain access to arbitrary user accounts via a crafted username, aka "ASP.Net Forms A...

  • EPSS 35.73%
  • Veröffentlicht 30.12.2011 01:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:15

The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is enabled, does not properly handle cached content, which allows remote attackers to obtain access t...

  • EPSS 21.02%
  • Veröffentlicht 14.12.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:13

ENCDEC.DLL in Windows Media Player and Media Center in Microsoft Windows XP SP2 and SP3, Windows Vista SP2, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .dvr-ms file, aka "Windows Media Player DVR-MS Memo...

  • EPSS 23.3%
  • Veröffentlicht 14.12.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:14

Buffer overflow in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, a...

  • EPSS 1.79%
  • Veröffentlicht 14.12.2011 00:55:01
  • Zuletzt bearbeitet 16.06.2026 23:33:14

Csrsrv.dll in the Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not proper...

  • EPSS 33.75%
  • Veröffentlicht 08.11.2011 21:55:01
  • Zuletzt bearbeitet 16.06.2026 23:30:36

Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by sending a sequence of crafted UDP packets to a clos...

  • EPSS 10.97%
  • Veröffentlicht 08.11.2011 21:55:01
  • Zuletzt bearbeitet 16.06.2026 23:30:36

The LDAP over SSL (aka LDAPS) implementation in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, W...