Microsoft

Windows Xp

739 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2002-0974

  • EPSS 53.64%
  • Veröffentlicht 24.09.2002 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.

10

CVE-2002-0391

Exploit
  • EPSS 7.42%
  • Veröffentlicht 12.08.2002 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array ...

7.2

CVE-2002-0366

  • EPSS 0.56%
  • Veröffentlicht 03.07.2002 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

5

CVE-2002-0283

  • EPSS 3.45%
  • Veröffentlicht 31.05.2002 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Windows XP with port 445 open allows remote attackers to cause a denial of service (CPU consumption) via a flood of TCP SYN packets containing possibly malformed data.

7.2

CVE-2002-0151

  • EPSS 3.39%
  • Veröffentlicht 04.04.2002 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in Multiple UNC Provider (MUP) in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request.

7.5

CVE-2002-0053

  • EPSS 52.63%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be ...

5

CVE-2002-0055

  • EPSS 56.09%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.

5

CVE-2002-0057

  • EPSS 41.76%
  • Veröffentlicht 08.03.2002 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.

2.1

CVE-2001-1560

Exploit
  • EPSS 1.01%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.

2.1

CVE-2001-1570

  • EPSS 0.32%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out.