- EPSS 39.17%
- Veröffentlicht 15.10.2008 00:12:16
- Zuletzt bearbeitet 16.06.2026 22:57:02
Buffer underflow in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to execute arbitrary code via a Server Message Block (SMB) request that contains a filename with a cr...
CVE-2008-2250
- EPSS 1.64%
- Veröffentlicht 15.10.2008 00:12:15
- Zuletzt bearbeitet 16.06.2026 22:53:24
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate window properties sent from a parent window to a child window during creation of a new window, which all...
CVE-2008-2251
- EPSS 1.5%
- Veröffentlicht 15.10.2008 00:12:15
- Zuletzt bearbeitet 16.06.2026 22:53:24
Double free vulnerability in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows local users to gain privileges via a crafted application that makes system calls within multipl...
CVE-2008-2252
- EPSS 1.9%
- Veröffentlicht 15.10.2008 00:12:15
- Zuletzt bearbeitet 16.06.2026 22:53:24
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly validate parameters sent from user mode to the kernel, which allows local users to gain privileges via a crafted ...
CVE-2008-4114
- EPSS 49.28%
- Veröffentlicht 16.09.2008 23:00:01
- Zuletzt bearbeitet 16.06.2026 22:57:12
srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact vi...
CVE-2008-3013
- EPSS 52.07%
- Veröffentlicht 11.09.2008 01:11:47
- Zuletzt bearbeitet 16.06.2026 22:54:55
gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...
- EPSS 34.54%
- Veröffentlicht 08.07.2008 23:41:00
- Zuletzt bearbeitet 16.06.2026 22:48:57
Integer underflow in SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 allo...
CVE-2008-1454
- EPSS 34.07%
- Veröffentlicht 08.07.2008 23:41:00
- Zuletzt bearbeitet 16.06.2026 22:51:46
Unspecified vulnerability in Microsoft DNS in Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008 allows remote attackers to conduct cache poisoning attacks via unknown vectors related to accepting "records from a response that is outside the ...
CVE-2008-1441
- EPSS 19.67%
- Veröffentlicht 12.06.2008 02:32:00
- Zuletzt bearbeitet 16.06.2026 22:51:44
Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system hang) via a series of Pragmatic General Multicast (PGM) packets with invalid fragment options,...
- EPSS 36.83%
- Veröffentlicht 21.04.2008 17:05:00
- Zuletzt bearbeitet 16.06.2026 22:51:43
Microsoft Windows XP Professional SP2, Vista, and Server 2003 and 2008 does not properly assign activities to the (1) NetworkService and (2) LocalService accounts, which might allow context-dependent attackers to gain privileges by using one service ...