Microsoft

Windows Xp

739 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2008-4114

Exploit
  • EPSS 78.91%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact vi...

9.3

CVE-2008-3008

  • EPSS 81.1%
  • Published 11.09.2008 01:11:47
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows remote attackers to execute arbitrary code via a long first argument to the GetDetailsString method, aka "Windows Me...

9.3

CVE-2008-3012

  • EPSS 70.56%
  • Published 11.09.2008 01:11:47
  • Last modified 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3013

  • EPSS 71.54%
  • Published 11.09.2008 01:11:47
  • Last modified 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3014

  • EPSS 75.59%
  • Published 11.09.2008 01:11:47
  • Last modified 09.04.2025 00:30:58

Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 20...

9.3

CVE-2007-5348

  • EPSS 82.84%
  • Published 11.09.2008 01:01:19
  • Last modified 09.04.2025 00:30:58

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerP...

9

CVE-2008-1456

  • EPSS 58.67%
  • Published 13.08.2008 12:42:00
  • Last modified 09.04.2025 00:30:58

Array index vulnerability in the Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote authenticated users to execute arbitrary code via a crafted event subscription req...

9

CVE-2008-1457

  • EPSS 54.93%
  • Published 13.08.2008 12:42:00
  • Last modified 09.04.2025 00:30:58

The Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate per-user subscriptions, which allows remote authenticated users to execute arbitrary code via a cr...

9.3

CVE-2008-2245

  • EPSS 83.12%
  • Published 13.08.2008 00:41:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in the InternalOpenColorProfile function in mscms.dll in Microsoft Windows Image Color Management System (MSCMS) in the Image Color Management (ICM) component on Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2...

9.3

CVE-2008-3648

Exploit
  • EPSS 36.63%
  • Published 12.08.2008 23:41:00
  • Last modified 09.04.2025 00:30:58

nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008.