Microsoft Windows 2000 — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Windows 2000, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2009-2523 — CVSS 10.0 (critical): The License Logging Server (llssrv.exe) in Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via an RPC message…
CVE-2003-0528 — CVSS 10.0 (critical): Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to…
CVE-2006-3439 — CVSS 10.0 (critical): Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including…
CVE-2000-1034 — CVSS 10.0 (critical): Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long…
CVE-2005-1208 — CVSS 10.0 (critical): Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute…
CVE-2005-0551 — CVSS 10.0 (critical): Stack-based buffer overflow in WINSRV.DLL in the Client Server Runtime System (CSRSS) process of Microsoft Windows 2000, Windows XP SP1 and…
CVE-2008-4834 — CVSS 10.0 (critical): Buffer overflow in SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2 allows remote…
CVE-2007-0040 — CVSS 10.0 (critical): The LDAP service in Windows Active Directory in Microsoft Windows 2000 Server SP4, Server 2003 SP1 and SP2, Server 2003 x64 Edition and…
CVE-2006-3440 — CVSS 10.0 (critical): Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute…
CVE-2005-0059 — CVSS 10.0 (critical): Buffer overflow in the Message Queuing component of Microsoft Windows 2000 and Windows XP SP1 allows remote attackers to execute arbitrary…
CVE-2005-0050 — CVSS 10.0 (critical): The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of…
CVE-2000-1089 — CVSS 10.0 (critical): Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer…
CVE-2003-0715 — CVSS 10.0 (critical): Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to…
CVE-2004-0201 — CVSS 10.0 (critical): Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003…
CVE-2006-2373 — CVSS 10.0 (critical): The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows…
CVE-2000-0222 — CVSS 10.0 (critical): The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote attackers…
CVE-2006-4691 — CVSS 10.0 (critical): Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and…
CVE-2009-1930 — CVSS 10.0 (critical): The Telnet service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2…
CVE-2001-0147 — CVSS 10.0 (critical): Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands via a malformed field that is…
CVE-2009-0086 — CVSS 10.0 (critical): Integer underflow in Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold…
CVE-2001-0241 — CVSS 10.0 (critical): Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print…
CVE-2002-0018 — CVSS 10.0 (critical): In Microsoft Windows NT and Windows 2000, a trusting domain that receives authorization information from a trusted domain does not verify…
CVE-2009-1925 — CVSS 10.0 (critical): The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state…
CVE-2009-0228 — CVSS 10.0 (critical): Stack-based buffer overflow in the EnumeratePrintShares function in Windows Print Spooler Service (win32spl.dll) in Microsoft Windows 2000…
CVE-2002-1257 — CVSS 10.0 (critical): Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to execute arbitrary code by including a Java…
CVE-2004-0209 — CVSS 10.0 (critical): Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows…
CVE-2004-0212 — CVSS 10.0 (critical): Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or…
CVE-2008-3479 — CVSS 10.0 (critical): Heap-based buffer overflow in the Microsoft Message Queuing (MSMQ) service (mqsvc.exe) in Microsoft Windows 2000 SP4 allows remote…
CVE-2009-0568 — CVSS 10.0 (critical): The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server…
CVE-2004-0214 — CVSS 10.0 (critical): Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote…
CVE-2007-1748 — CVSS 10.0 (critical): Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4…
CVE-2009-1138 — CVSS 10.0 (critical): The LDAP service in Active Directory on Microsoft Windows 2000 SP4 does not properly free memory for LDAP and LDAPS requests, which allows…
CVE-1999-0535 — CVSS 10.0 (critical): A Windows NT account policy for passwords has inappropriate, security-critical settings, e.g. for password length, password age, or…
CVE-2004-0540 — CVSS 10.0 (critical): Microsoft Windows 2000, when running in a domain whose Fully Qualified Domain Name (FQDN) is exactly 8 characters long, does not prevent…
CVE-2009-3677 — CVSS 10.0 (critical): The Internet Authentication Service (IAS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server…
CVE-2004-0568 — CVSS 10.0 (critical): HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a…
CVE-2004-0571 — CVSS 10.0 (critical): Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute…
CVE-2004-0574 — CVSS 10.0 (critical): The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange…
CVE-2008-4023 — CVSS 10.0 (critical): Active Directory in Microsoft Windows 2000 SP4 does not properly allocate memory for (1) LDAP and (2) LDAPS requests, which allows remote…
CVE-1999-0874 — CVSS 10.0 (critical): Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM…
CVE-2010-0231 — CVSS 10.0 (critical): The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista…
CVE-2006-3441 — CVSS 10.0 (critical): Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to…
CVE-2008-4038 — CVSS 10.0 (critical): Buffer underflow in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote…
CVE-2004-0901 — CVSS 10.0 (critical): Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data lengths, which allows…
CVE-2004-1080 — CVSS 10.0 (critical): The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to…
CVE-2010-0269 — CVSS 10.0 (critical): The SMB client in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows…
CVE-2005-2122 — CVSS 10.0 (critical): Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to execute arbitrary commands via a…
CVE-2005-1983 — CVSS 10.0 (critical): Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote…
CVE-2009-2494 — CVSS 9.8 (critical): The Active Template Library (ATL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008…
CVE-2008-3465 — CVSS 9.8 (critical): Heap-based buffer overflow in an API in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and…
CVE-2008-4835 — CVSS 9.8 (critical): SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008…
CVE-2000-1218 — CVSS 9.8 (critical): The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to…
CVE-2002-0391 — CVSS 9.8 (critical): Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including…
CVE-2008-1454 — CVSS 9.4 (critical): Unspecified vulnerability in Microsoft DNS in Windows 2000 SP4, Server 2003 SP1 and SP2, and Server 2008 allows remote attackers to conduct…
CVE-2009-4312 — CVSS 9.3 (critical): Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to…
CVE-2009-4311 — CVSS 9.3 (critical): Unspecified vulnerability in the Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to…
CVE-2009-4310 — CVSS 9.3 (critical): Stack-based buffer overflow in the Intel Indeo41 codec for Windows Media Player in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server…
CVE-2009-4309 — CVSS 9.3 (critical): Heap-based buffer overflow in the Intel Indeo41 codec for Windows Media Player in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server…
CVE-2009-4210 — CVSS 9.3 (critical): The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service…
CVE-2003-0825 — CVSS 9.3 (critical): The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly…
CVE-2009-3674 — CVSS 9.3 (critical): Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by…
CVE-2009-3673 — CVSS 9.3 (critical): Microsoft Internet Explorer 7 and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by…
CVE-2006-2379 — CVSS 9.3 (critical): Buffer overflow in the TCP/IP Protocol driver in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows remote…
CVE-2009-2531 — CVSS 9.3 (critical): Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute…
CVE-2006-1311 — CVSS 9.3 (critical): The RichEdit component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1; Office 2000 SP3, XP SP3, 2003 SP2, and Office 2004 for Mac; and…
CVE-2006-0020 — CVSS 9.3 (critical): An unspecified Microsoft WMF parsing application, as used in Internet Explorer 5.01 SP4 on Windows 2000 SP4, and 5.5 SP2 on Windows…
CVE-2009-2530 — CVSS 9.3 (critical): Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute…
CVE-2006-0010 — CVSS 9.3 (critical): Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows…
CVE-2006-0006 — CVSS 9.3 (critical): Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on…
CVE-2006-0005 — CVSS 9.3 (critical): Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and…
CVE-2009-2525 — CVSS 9.3 (critical): Microsoft Windows Media Runtime, as used in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager…
CVE-2010-0555 — CVSS 9.3 (critical): Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows…
CVE-2010-0489 — CVSS 9.3 (critical): Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted…
CVE-2009-2519 — CVSS 9.3 (critical): The DHTML Editing Component ActiveX control in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly format…
CVE-2010-0487 — CVSS 9.3 (critical): The Authenticode Signature verification functionality in cabview.dll in Cabinet File Viewer Shell Extension 5.1, 6.0, and 6.1 in Microsoft…
CVE-2009-2514 — CVSS 9.3 (critical): win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during…
CVE-2009-2507 — CVSS 9.3 (critical): A certain ActiveX control in the Indexing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly…
CVE-2009-2506 — CVSS 9.3 (critical): Integer overflow in the text converters in Microsoft Office Word 2002 SP3 and 2003 SP3; Works 8.5; Office Converter Pack; and WordPad in…
CVE-2009-2498 — CVSS 9.3 (critical): Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in…
CVE-2009-2497 — CVSS 9.3 (critical): The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly…
CVE-2009-1924 — CVSS 9.3 (critical): Integer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 allows remote WINS replication…
CVE-2009-1923 — CVSS 9.3 (critical): Heap-based buffer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 and Server 2003 SP2 allows…
CVE-2010-0486 — CVSS 9.3 (critical): The WinVerifyTrust function in Authenticode Signature Verification 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3…
CVE-2009-1920 — CVSS 9.3 (critical): The JScript scripting engine 5.1, 5.6, 5.7, and 5.8 in JScript.dll in Microsoft Windows, as used in Internet Explorer, does not properly…
CVE-2009-1919 — CVSS 9.3 (critical): Microsoft Internet Explorer 5.01 SP4 and 6 SP1; Internet Explorer 6 for Windows XP SP2 and SP3 and Server 2003 SP2; and Internet Explorer 7…
CVE-2009-1539 — CVSS 9.3 (critical): The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and…
CVE-2009-1538 — CVSS 9.3 (critical): The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and…
CVE-2009-1133 — CVSS 9.3 (critical): Heap-based buffer overflow in Microsoft Remote Desktop Connection (formerly Terminal Services Client) running RDP 5.0 through 6.1 on…
CVE-2010-0805 — CVSS 9.3 (critical): The Tabular Data Control (TDC) ActiveX control in Microsoft Internet Explorer 5.01 SP4, 6 on Windows XP SP2 and SP3, and 6 SP1 allows…
CVE-2009-0555 — CVSS 9.3 (critical): Microsoft Windows Media Runtime, as used in DirectShow WMA Voice Codec, Windows Media Audio Voice Decoder, and Audio Compression Manager…
CVE-2009-0550 — CVSS 9.3 (critical): Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server…
CVE-2009-0235 — CVSS 9.3 (critical): Stack-based buffer overflow in the Word 97 text converter in WordPad in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and…
CVE-2009-0232 — CVSS 9.3 (critical): Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold…
CVE-1999-0572 — CVSS 9.3 (critical): .reg files are associated with the Windows NT registry editor (regedit), making the registry susceptible to Trojan Horse attacks.
CVE-2009-0091 — CVSS 9.3 (critical): Microsoft .NET Framework 2.0, 2.0 SP1, and 3.5 does not properly enforce a certain type-equality constraint in .NET verifiable code, which…
CVE-2009-0090 — CVSS 9.3 (critical): Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to…
CVE-2009-0088 — CVSS 9.3 (critical): The WordPerfect 6.x Converter (WPFT632.CNV, 1998.1.27.0) in Microsoft Office Word 2000 SP3 and Microsoft Office Converter Pack does not…
CVE-2009-0087 — CVSS 9.3 (critical): Unspecified vulnerability in the Word 6 text converter in WordPad in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and…
CVE-2010-0480 — CVSS 9.3 (critical): Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2…
CVE-2009-0081 — CVSS 9.3 (critical): The graphics device interface (GDI) implementation in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2…
CVE-2008-5232 — CVSS 9.3 (critical): Buffer overflow in the CallHTMLHelp method in the Microsoft Windows Media Services ActiveX control in nskey.dll 4.1.00.3917 in Windows…
CVE-2010-0478 — CVSS 9.3 (critical): Stack-based buffer overflow in nsum.exe in the Windows Media Unicast Service in Media Services for Microsoft Windows 2000 Server SP4 allows…
CVE-2010-0268 — CVSS 9.3 (critical): Unspecified vulnerability in the Windows Media Player ActiveX control in Windows Media Player (WMP) 9 on Microsoft Windows 2000 SP4 and XP…
CVE-2008-4037 — CVSS 9.3 (critical): Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote…
CVE-2010-0267 — CVSS 9.3 (critical): Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary…
CVE-2008-3008 — CVSS 9.3 (critical): Stack-based buffer overflow in the WMEncProfileManager ActiveX control in wmex.dll in Microsoft Windows Media Encoder 9 Series allows…
CVE-2008-2249 — CVSS 9.3 (critical): Integer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows…
CVE-2010-0252 — CVSS 9.3 (critical): The Microsoft Data Analyzer ActiveX control (aka the Office Excel ActiveX control for Data Analysis) in max3activex.dll in Microsoft…
CVE-2008-2245 — CVSS 9.3 (critical): Heap-based buffer overflow in the InternalOpenColorProfile function in mscms.dll in Microsoft Windows Image Color Management System (MSCMS)…
CVE-2008-1087 — CVSS 9.3 (critical): Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote…
CVE-2008-0083 — CVSS 9.3 (critical): The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2…
CVE-2007-6255 — CVSS 9.3 (critical): Buffer overflow in the Microsoft HeartbeatCtl ActiveX control in HRTBEAT.OCX allows remote attackers to execute arbitrary code via the Host…
CVE-2007-6026 — CVSS 9.3 (critical): Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003…
CVE-2007-3040 — CVSS 9.3 (critical): Stack-based buffer overflow in agentdpv.dll 2.0.0.3425 in Microsoft Agent on Windows 2000 SP4 allows remote attackers to execute arbitrary…
CVE-2007-3034 — CVSS 9.3 (critical): Integer overflow in the AttemptWrite function in Graphics Rendering Engine (GDI) on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1…
CVE-2007-2374 — CVSS 9.3 (critical): Unspecified vulnerability in Microsoft Windows 2000, XP, and Server 2003 allows user-assisted remote attackers to execute arbitrary code…
CVE-2007-2219 — CVSS 9.3 (critical): Unspecified vulnerability in the Win32 API on Microsoft Windows 2000, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to…
CVE-2010-0028 — CVSS 9.3 (critical): Integer overflow in Microsoft Paint in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary…
CVE-2007-2218 — CVSS 9.3 (critical): Unspecified vulnerability in the Windows Schannel Security Package for Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2…
CVE-2007-1765 — CVSS 9.3 (critical): Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial…
CVE-2010-0491 — CVSS 9.3 (critical): Use-after-free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 6 SP1 allows remote attackers to execute arbitrary code by…
CVE-2010-0027 — CVSS 9.3 (critical): The URL validation functionality in Microsoft Internet Explorer 5.01, 6, 6 SP1, 7 and 8, and the ShellExecute API function in Windows 2000…
CVE-2007-1205 — CVSS 9.3 (critical): Unspecified vulnerability in Microsoft Agent (msagent\agentsvr.exe) in Windows 2000 SP4, XP SP2, and Server 2003, 2003 SP1, and 2003 SP2…
CVE-2010-0018 — CVSS 9.3 (critical): Integer overflow in the Embedded OpenType (EOT) Font Engine (t2embed.dll) in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows…
CVE-2007-0214 — CVSS 9.3 (critical): The HTML Help ActiveX control (Hhctrl.ocx) in Microsoft Windows 2000 SP3, XP SP2 and Professional, 2003 SP1 allows remote attackers to…
CVE-2003-0662 — CVSS 9.3 (critical): Buffer overflow in Troubleshooter ActiveX Control (Tshoot.ocx) in Microsoft Windows 2000 SP4 and earlier allows remote attackers to execute…
CVE-2007-0038 — CVSS 9.3 (critical): Stack-based buffer overflow in the animated cursor code in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute…
CVE-2010-0016 — CVSS 9.3 (critical): The SMB client implementation in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly validate response…
CVE-2009-4313 — CVSS 9.3 (critical): ir32_32.dll 3.24.15.3 in the Indeo32 codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to…
CVE-2008-1457 — CVSS 9.0 (critical): The Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not…
CVE-2009-0230 — CVSS 9.0 (critical): The Windows Print Spooler in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2…
CVE-2010-0020 — CVSS 9.0 (critical): The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista…
CVE-2006-4696 — CVSS 9.0 (critical): Unspecified vulnerability in the Server service in Microsoft Windows 2000 SP4, Server 2003 SP1 and earlier, and XP SP2 and earlier allows…
CVE-2008-1456 — CVSS 9.0 (critical): Array index vulnerability in the Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1…
CVE-2009-0231 — CVSS 8.8 (high): The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and…
CVE-2009-1547 — CVSS 8.8 (high): Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a…
CVE-2009-2493 — CVSS 8.8 (high): The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++…
CVE-2009-2499 — CVSS 8.5 (high): Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server…
CVE-2004-2339 — CVSS 8.4 (high): Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel…
CVE-2009-3671 — CVSS 8.1 (high): Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by…
CVE-2008-1083 — CVSS 8.1 (high): Heap-based buffer overflow in the CreateDIBPatternBrushPt function in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2…
CVE-2009-2529 — CVSS 8.1 (high): Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not properly handle argument validation for unspecified variables, which…
CVE-2009-1928 — CVSS 7.8 (high): Stack consumption vulnerability in the LDAP service in Active Directory on Microsoft Windows 2000 SP4, Server 2003 SP2, and Server 2008…
CVE-1999-0726 — CVSS 7.8 (high): An attacker can conduct a denial of service in Windows NT by executing a program with a malformed file image header.
CVE-2003-1448 — CVSS 7.8 (high): Memory leak in the Windows 2000 kernel allows remote attackers to cause a denial of service (SMB request hang) via a NetBIOS continuation…
CVE-2009-1139 — CVSS 7.8 (high): Memory leak in the LDAP service in Active Directory on Microsoft Windows 2000 SP4 and Server 2003 SP2, and Active Directory Application…
CVE-2006-0988 — CVSS 7.8 (high): The default configuration of the DNS Server service on Windows Server 2003 and Windows 2000, and the Microsoft DNS Server service on…
CVE-2001-1238 — CVSS 7.8 (high): Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3)…
CVE-1999-0721 — CVSS 7.8 (high): Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request.
CVE-2010-0485 — CVSS 7.8 (high): The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server…
CVE-2006-6723 — CVSS 7.8 (high): The Workstation service in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to cause a denial of service (memory consumption)…
CVE-2009-1926 — CVSS 7.8 (high): Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers…
CVE-2002-0051 — CVSS 7.8 (high): Windows 2000 allows local users to prevent the application of new group policy settings by opening Group Policy files with exclusive-read…
CVE-2006-3942 — CVSS 7.8 (high): The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service…
CVE-2009-0082 — CVSS 7.8 (high): The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly…
CVE-2000-0305 — CVSS 7.8 (high): Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by…
CVE-2007-2228 — CVSS 7.8 (high): rpcrt4.dll (aka the RPC runtime library) in Microsoft Windows XP SP2, XP Professional x64 Edition, Server 2003 SP1 and SP2, Server 2003 x64…
CVE-2005-3644 — CVSS 7.8 (high): PNP_GetDeviceList (upnp_getdevicelist) in UPnP for Microsoft Windows 2000 SP4 and earlier, and possibly Windows XP SP1 and earlier, allows…
CVE-2005-3945 — CVSS 7.8 (high): The SynAttackProtect protection in Microsoft Windows 2003 before SP1 and Windows 2000 before SP4 with Update Roll-up uses a hash of…
CVE-2010-0022 — CVSS 7.8 (high): The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista…
CVE-2004-0213 — CVSS 7.8 (high): Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to…
CVE-2002-0070 — CVSS 7.6 (high): Buffer overflow in Windows Shell (used as the Windows Desktop) allows local and possibly remote attackers to execute arbitrary code via a…
CVE-2006-3648 — CVSS 7.6 (high): Unspecified vulnerability in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 and 2003 SP1, allows remote attackers to execute…
CVE-2007-0026 — CVSS 7.6 (high): The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary…
CVE-1999-1593 — CVSS 7.6 (high): Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a…
CVE-2005-2124 — CVSS 7.6 (high): Unspecified vulnerability in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, related to…
CVE-2010-0483 — CVSS 7.6 (high): vbscript.dll in VBScript 5.1, 5.6, 5.7, and 5.8 in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer…
CVE-2010-0917 — CVSS 7.6 (high): Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used…
CVE-2003-0906 — CVSS 7.6 (high): Buffer overflow in the rendering for (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats in Microsoft Windows NT 4.0…
CVE-2002-0724 — CVSS 7.5 (high): Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows attackers to cause a…
CVE-1999-0391 — CVSS 7.5 (high): The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response…
CVE-1999-0875 — CVSS 7.5 (high): DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
CVE-2000-0834 — CVSS 7.5 (high): The Windows 2000 telnet client attempts to perform NTLM authentication by default, which allows remote attackers to capture and replay the…
CVE-2000-0885 — CVSS 7.5 (high): Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a…
CVE-2000-1079 — CVSS 7.5 (high): Interactions between the CIFS Browser Protocol and NetBIOS as implemented in Microsoft Windows 95, 98, NT, and 2000 allow remote attackers…
CVE-2001-0238 — CVSS 7.5 (high): Microsoft Data Access Component Internet Publishing Provider 8.103.2519.0 and earlier allows remote attackers to bypass Security Zone…
CVE-2001-0341 — CVSS 7.5 (high): Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute…
CVE-2001-0347 — CVSS 7.5 (high): Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote attackers to determine the existence of user…
CVE-2001-0504 — CVSS 7.5 (high): Vulnerability in authentication process for SMTP service in Microsoft Windows 2000 allows remote attackers to use incorrect credentials to…
CVE-2001-0860 — CVSS 7.5 (high): Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of…
CVE-2001-1452 — CVSS 7.5 (high): By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows…
CVE-2001-1515 — CVSS 7.5 (high): Macintosh clients, when using NT file system volumes on Windows 2000 SP1, create subdirectories and automatically modify the inherited NTFS…
CVE-2002-0020 — CVSS 7.5 (high): Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol…
CVE-2002-0053 — CVSS 7.5 (high): Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause…
CVE-2002-0054 — CVSS 7.5 (high): SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses…
CVE-2002-0692 — CVSS 7.5 (high): Buffer overflow in SmartHTML Interpreter (shtml.dll) in Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers…
CVE-2002-0693 — CVSS 7.5 (high): Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT…