Microsoft

Windows Server 2008

3466 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2011-1263

  • EPSS 64.34%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the logon page in Remote Desktop Web Access (RD Web Access) in Microsoft Windows Server 2008 R2 and R2 SP1 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "Remote Desktop Web...

7.8

CVE-2011-1871

  • EPSS 74.92%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

Tcpip.sys in the TCP/IP stack in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (reboot) via a series of crafted ICMP messages, aka "ICMP Denial of...

7.1

CVE-2011-1965

  • EPSS 74.35%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

Tcpip.sys in the TCP/IP stack in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 does not properly implement URL-based QoS, which allows remote attackers to cause a denial of service (reboot) via a crafted URL to a web server, ...

10

CVE-2011-1966

  • EPSS 65.82%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

The DNS server in Microsoft Windows Server 2008 SP2, R2, and R2 SP1 does not properly handle NAPTR queries that trigger recursive processing, which allows remote attackers to execute arbitrary code via a crafted query, aka "DNS NAPTR Query Vulnerabil...

7.2

CVE-2011-1967

  • EPSS 0.24%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

Winsrv.dll in the Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not proper...

5

CVE-2011-1970

  • EPSS 61.47%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

The DNS server in Microsoft Windows Server 2003 SP2 and Windows Server 2008 SP2, R2, and R2 SP1 does not properly initialize memory, which allows remote attackers to cause a denial of service (service outage) via a query for a nonexistent domain, aka...

4.7

CVE-2011-1971

  • EPSS 1.22%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly parse file metadata, which allows local users to cause a denial of service (reboot) via a crafted file, aka "Windows Kern...

9.3

CVE-2011-1975

  • EPSS 56.02%
  • Published 10.08.2011 21:55:01
  • Last modified 11.04.2025 00:51:21

Untrusted search path vulnerability in the Data Access Tracing component in Windows Data Access Components (Windows DAC) 6.0 in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 allows local users to gain privileges via a Trojan ...

7.2

CVE-2011-1875

  • EPSS 0.73%
  • Published 13.07.2011 23:55:01
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local user...

7.2

CVE-2011-1876

  • EPSS 0.73%
  • Published 13.07.2011 23:55:01
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local user...