Microsoft

Windows Xp

739 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2002-0974

  • EPSS 53.64%
  • Published 24.09.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.

10

CVE-2002-0391

Exploit
  • EPSS 7.42%
  • Published 12.08.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array ...

7.2

CVE-2002-0366

  • EPSS 0.56%
  • Published 03.07.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

5

CVE-2002-0283

  • EPSS 3.45%
  • Published 31.05.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

Windows XP with port 445 open allows remote attackers to cause a denial of service (CPU consumption) via a flood of TCP SYN packets containing possibly malformed data.

7.2

CVE-2002-0151

  • EPSS 3.39%
  • Published 04.04.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Multiple UNC Provider (MUP) in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request.

7.5

CVE-2002-0053

  • EPSS 52.63%
  • Published 08.03.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be ...

5

CVE-2002-0055

  • EPSS 56.09%
  • Published 08.03.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.

5

CVE-2002-0057

  • EPSS 41.76%
  • Published 08.03.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.

2.1

CVE-2001-1560

Exploit
  • EPSS 1.01%
  • Published 31.12.2001 05:00:00
  • Last modified 03.04.2025 01:03:51

Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.

2.1

CVE-2001-1570

  • EPSS 0.32%
  • Published 31.12.2001 05:00:00
  • Last modified 03.04.2025 01:03:51

Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out.