Microsoft

Windows Server 2008

3517 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2009-0232

  • EPSS 60.29%
  • Veröffentlicht 15.07.2009 15:30:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a crafted name ta...

7.8

CVE-2009-1123

Warnung
  • EPSS 4.15%
  • Veröffentlicht 10.06.2009 18:30:00
  • Zuletzt bearbeitet 22.10.2025 01:15:34

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted appli...

7.2

CVE-2009-1124

  • EPSS 0.81%
  • Veröffentlicht 10.06.2009 18:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate user-mode pointers in unspecified error conditions, which allows local users to gain privileges via a ...

7.2

CVE-2009-1125

  • EPSS 0.63%
  • Veröffentlicht 10.06.2009 18:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly validate an argument to an unspecified system call, which allows local users to gain privileges via a crafted a...

7.2

CVE-2009-1126

  • EPSS 0.71%
  • Veröffentlicht 10.06.2009 18:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly validate the user-mode input associated with the editing of an unspecified desktop parameter, which allows local users to gain privileges via a crafted ap...

4.9

CVE-2009-0229

  • EPSS 3.11%
  • Veröffentlicht 10.06.2009 18:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Windows Printing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows local users to read arbitrary files via a crafted separator page, aka "Print Spooler Read File Vulnerabi...

9

CVE-2009-0230

  • EPSS 30.18%
  • Veröffentlicht 10.06.2009 18:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 allows remote authenticated users to gain privileges via a crafted RPC message that triggers loading of a DLL file...

10

CVE-2009-0568

  • EPSS 56.01%
  • Veröffentlicht 10.06.2009 18:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly maintain its internal state, which allows remote attackers to overwrite arbitrary mem...

7.2

CVE-2009-0078

  • EPSS 1.63%
  • Veröffentlicht 15.04.2009 08:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Windows Management Instrumentation (WMI) provider in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly implement isolation among a set of distinct processes that (1) all run under the...

6.9

CVE-2009-0080

  • EPSS 2.15%
  • Veröffentlicht 15.04.2009 08:00:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The ThreadPool class in Windows Vista Gold and SP1, and Server 2008, does not properly implement isolation among a set of distinct processes that (1) all run under the NetworkService account or (2) all run under the LocalService account, which allows...