Microsoft

Windows 2000 Terminal Services

24 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2005-1214

  • EPSS 29.17%
  • Published 14.06.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page.

7.5

CVE-2005-1212

  • EPSS 38.03%
  • Published 14.06.2005 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.

7.2

CVE-2003-0496

Exploit
  • EPSS 1.64%
  • Published 18.08.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file.

4.6

CVE-2003-0112

  • EPSS 4.29%
  • Published 12.05.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in Windows Kernel allows local users to gain privileges by causing certain error messages to be passed to a debugger.

7.5

CVE-2003-0111

  • EPSS 49.37%
  • Published 05.05.2003 04:00:00
  • Last modified 03.04.2025 01:03:51

The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Fla...

5

CVE-2002-1561

Exploit
  • EPSS 66.11%
  • Published 02.04.2003 05:00:00
  • Last modified 03.04.2025 01:03:51

The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference...

7.5

CVE-2003-0109

Exploit
  • EPSS 88.71%
  • Published 31.03.2003 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.

7.5

CVE-2003-0010

  • EPSS 26.25%
  • Published 24.03.2003 05:00:00
  • Last modified 03.04.2025 01:03:51

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a lar...

7.5

CVE-2003-0003

  • EPSS 31.12%
  • Published 07.02.2003 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service containing certain parameter inf...

5

CVE-2003-0001

  • EPSS 3.45%
  • Published 17.01.2003 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.