Microsoft

Windows Xp

739 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2008-4114

Exploit
  • EPSS 78.91%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact vi...

9.3

CVE-2008-3008

  • EPSS 81.1%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows remote attackers to execute arbitrary code via a long first argument to the GetDetailsString method, aka "Windows Me...

9.3

CVE-2008-3012

  • EPSS 70.56%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3013

  • EPSS 71.54%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3014

  • EPSS 75.59%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 20...

9.3

CVE-2007-5348

  • EPSS 82.84%
  • Veröffentlicht 11.09.2008 01:01:19
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerP...

9

CVE-2008-1456

  • EPSS 58.67%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Array index vulnerability in the Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote authenticated users to execute arbitrary code via a crafted event subscription req...

9

CVE-2008-1457

  • EPSS 54.93%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate per-user subscriptions, which allows remote authenticated users to execute arbitrary code via a cr...

9.3

CVE-2008-2245

  • EPSS 83.12%
  • Veröffentlicht 13.08.2008 00:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Heap-based buffer overflow in the InternalOpenColorProfile function in mscms.dll in Microsoft Windows Image Color Management System (MSCMS) in the Image Color Management (ICM) component on Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2...

9.3

CVE-2008-3648

Exploit
  • EPSS 36.63%
  • Veröffentlicht 12.08.2008 23:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008.