Microsoft

Windows 7

2368 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-0492

  • EPSS 62.85%
  • Published 31.03.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, ...

4.3

CVE-2010-0494

  • EPSS 50.18%
  • Published 31.03.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted HTML document in a situation where the cl...

4.7

CVE-2010-0719

  • EPSS 0.38%
  • Published 26.02.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

An unspecified API in Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7 does not validate arguments, which allows local users to cause a denial of service (system crash) via a crafted applicati...

7.8

CVE-2010-0022

  • EPSS 75%
  • Published 10.02.2010 18:30:01
  • Last modified 11.04.2025 00:51:21

The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate the share a...

10

CVE-2010-0231

  • EPSS 71.51%
  • Published 10.02.2010 18:30:01
  • Last modified 11.04.2025 00:51:21

The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not use a sufficient source of en...

9.3

CVE-2010-0250

  • EPSS 71.11%
  • Published 10.02.2010 18:30:01
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in DirectShow in Microsoft DirectX, as used in the AVI Filter on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2, and in Quartz on Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Win...

9.3

CVE-2010-0252

  • EPSS 42.19%
  • Published 10.02.2010 18:30:01
  • Last modified 11.04.2025 00:51:21

The Microsoft Data Analyzer ActiveX control (aka the Office Excel ActiveX control for Data Analysis) in max3activex.dll in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2...

9.3

CVE-2010-0017

  • EPSS 43.93%
  • Published 10.02.2010 18:30:00
  • Last modified 11.04.2025 00:51:21

Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB client implementation in Windows Vista Gold, SP1, an...

9

CVE-2010-0020

  • EPSS 37.38%
  • Published 10.02.2010 18:30:00
  • Last modified 11.04.2025 00:51:21

The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate request fie...

7.1

CVE-2010-0021

  • EPSS 11.41%
  • Published 10.02.2010 18:30:00
  • Last modified 11.04.2025 00:51:21

Multiple race conditions in the SMB implementation in the Server service in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allow remote attackers to cause a denial of service (system hang) via a craft...