Windows Xp

windows_xp

Vendor: Microsoft • 739 CVEs

CVEs (739)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2003-0661 1Microsoft 4Windows 2000 Windows 2003 ServerWindows Nt+1 more Apr 16, 2026 Oct 20, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The NetBT Name Service (NBNS) for NetBIOS in Windows NT 4.0, 2000, XP, and Server 2003 may include random memory in a response to a NBNS query, which could allow remote attackers to obtain sensitive information.
CVE-2003-0715 1Microsoft 4Windows 2000 Windows 2003 ServerWindows Nt+1 more Apr 16, 2026 Sep 17, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed DCERPC DCOM object activation request packet wi...Show more Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed DCERPC DCOM object activation request packet with modified length fields, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0528.Show less
CVE-2003-0528 1Microsoft 4Windows 2000 Windows 2003 ServerWindows Nt+1 more Apr 16, 2026 Sep 17, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed RPC request with a long filename parameter, a d...Show more Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed RPC request with a long filename parameter, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0715.Show less
CVE-2003-0352 1Microsoft 4Windows 2000 Windows 2003 ServerWindows Nt+1 more Apr 16, 2026 Aug 18, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/Lo...Show more Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.Show less
CVE-2003-0345 1Microsoft 3Windows 2000 Windows NtWindows Xp Apr 16, 2026 Aug 18, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the SMB capability for Microsoft Windows XP, 2000, and NT allows remote attackers to cause a denial of service and possibly execute arbitrary code via an SMB packet that specifies a smaller buffer leng...Show more Buffer overflow in the SMB capability for Microsoft Windows XP, 2000, and NT allows remote attackers to cause a denial of service and possibly execute arbitrary code via an SMB packet that specifies a smaller buffer length than is required.Show less
CVE-2003-0469 1Microsoft 7Windows 2000 Windows 2003 ServerWindows 98+4 more Apr 16, 2026 Aug 7, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as dem...Show more Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag.Show less
CVE-2003-0306 1Microsoft 1Windows Xp Apr 16, 2026 Jun 9, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in EXPLORER.EXE on Windows XP allows attackers to execute arbitrary code as the XP user via a desktop.ini file with a long .ShellClassInfo parameter.
CVE-2003-0112 1Microsoft 4Windows 2000 Windows 2000 Terminal ServicesWindows Nt+1 more Apr 16, 2026 May 12, 2003 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Buffer overflow in Windows Kernel allows local users to gain privileges by causing certain error messages to be passed to a debugger.
CVE-2002-1561 1Microsoft 4Windows 2000 Windows 2000 Terminal ServicesWindows Nt+1 more Apr 16, 2026 Apr 2, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which trigg...Show more The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference.Show less
CVE-2003-0010 1Microsoft 7Windows 2000 Windows 2000 Terminal ServicesWindows 98+4 more Apr 16, 2026 Mar 24, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page...Show more Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based buffer overflow attack.Show less
CVE-2003-0009 1Microsoft 2Windows Me Windows Xp Apr 16, 2026 Mar 7, 2003 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious...Show more Cross-site scripting (XSS) vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter.Show less
CVE-2003-0004 1Microsoft 1Windows Xp Apr 16, 2026 Feb 19, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in the Windows Redirector function in Microsoft Windows XP allows local users to execute arbitrary code via a long parameter.
CVE-2003-0003 1Microsoft 4Windows 2000 Windows 2000 Terminal ServicesWindows Nt+1 more Apr 16, 2026 Feb 7, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service co...Show more Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service containing certain parameter information.Show less
CVE-2002-2401 1Microsoft 3Windows 2000 Windows NtWindows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 3.6 LOW· v2 NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.
CVE-2002-2324 1Microsoft 1Windows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which all...Show more The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.Show less
CVE-2002-2283 1Microsoft 1Windows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 1.9 LOW· v2 Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user to view processes of...Show more Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user to view processes of other users.Show less
CVE-2002-2185 6Debian MandrakesoftMicrosoft+3 more 11Debian Linux Enterprise LinuxEnterprise Linux Desktop+8 more Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target t...Show more The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.Show less
CVE-2002-2132 1Microsoft 2Windows 2000 Windows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.
CVE-2002-2117 1Microsoft 1Windows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP).
CVE-2002-2105 1Microsoft 1Windows Xp Apr 16, 2026 Dec 31, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.

Previous 1...33 343536 37 Next