Microsoft

Windows Xp

738 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 58.13%
  • Veröffentlicht 12.08.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:20

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array ...

  • EPSS 2.81%
  • Veröffentlicht 03.07.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:17

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

  • EPSS 17.17%
  • Veröffentlicht 31.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:08

Windows XP with port 445 open allows remote attackers to cause a denial of service (CPU consumption) via a flood of TCP SYN packets containing possibly malformed data.

  • EPSS 3.58%
  • Veröffentlicht 04.04.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:53

Buffer overflow in Multiple UNC Provider (MUP) in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request.

  • EPSS 37.91%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:40

Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be ...

  • EPSS 37.56%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:40

SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.

  • EPSS 19.18%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:40

XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.

Exploit
  • EPSS 4.95%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:30

Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.

  • EPSS 1.65%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:31

Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out.

  • EPSS 13.09%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:31

The Remote Desktop client in Windows XP sends the most recent user account name in cleartext, which could allow remote attackers to obtain terminal server user account names via sniffing.