CVE-2009-0082
- EPSS 1.35%
- Veröffentlicht 10.03.2009 20:30:01
- Zuletzt bearbeitet 16.06.2026 23:04:13
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate handles, which allows local users to gain privileges via a crafted application that triggers unspecified...
CVE-2009-0081
- EPSS 32.11%
- Veröffentlicht 10.03.2009 20:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:13
The graphics device interface (GDI) implementation in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate input received from user mode, which allows remote...
- EPSS 1.45%
- Veröffentlicht 28.01.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:45
Microsoft Windows XP, Server 2003 and 2008, and Vista exposes I/O activity measurements of all processes, which allows local users to obtain sensitive information, as demonstrated by reading the I/O Other Bytes column in Task Manager (aka taskmgr.exe...
CVE-2009-0243
- EPSS 6.28%
- Veröffentlicht 21.01.2009 20:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:34
Microsoft Windows does not properly enforce the Autorun and NoDriveTypeAutoRun registry values, which allows physically proximate attackers to execute arbitrary code by (1) inserting CD-ROM media, (2) inserting DVD media, (3) connecting a USB device,...
- EPSS 36.74%
- Veröffentlicht 14.01.2009 23:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:17
Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .chm file.
- EPSS 45.76%
- Veröffentlicht 14.01.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 22:58:38
Buffer overflow in SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via malformed values of unspecified "fields inside the SMB packets" in an NT Tra...
- EPSS 44.93%
- Veröffentlicht 14.01.2009 22:30:00
- Zuletzt bearbeitet 16.06.2026 22:58:38
SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to execute arbitrary code via malformed values of unspecified "fields inside the SMB packets...
CVE-2008-2249
- EPSS 31.12%
- Veröffentlicht 10.12.2008 14:00:00
- Zuletzt bearbeitet 16.06.2026 22:53:24
Integer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to execute arbitrary code via a malformed header in a crafted WMF file, which triggers a buffe...
CVE-2008-3465
- EPSS 13.67%
- Veröffentlicht 10.12.2008 14:00:00
- Zuletzt bearbeitet 16.06.2026 22:55:52
Heap-based buffer overflow in an API in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows context-dependent attackers to cause a denial of service or execute arbitrary code via a WM...
- EPSS 98.75%
- Veröffentlicht 23.10.2008 22:00:01
- Zuletzt bearbeitet 16.06.2026 22:57:29
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during p...