Vulnerabilities > Microsoft
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2000-04-07 | CVE-2000-0298 | Unspecified vulnerability in Microsoft Windows 2000 The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories. | 7.2 |
2000-04-03 | CVE-2000-0277 | 7PK - Security Features vulnerability in Microsoft Excel 2000/97 Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability. | 7.2 |
2000-03-31 | CVE-2000-0302 | Unspecified vulnerability in Microsoft Index Server 2.0 Microsoft Index Server allows remote attackers to view the source code of ASP files by appending a %20 to the filename in the CiWebHitsFile argument to the null.htw URL. | 5.0 |
2000-03-30 | CVE-2000-0246 | Unspecified vulnerability in Microsoft products IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability. | 5.0 |
2000-03-30 | CVE-2000-0232 | Unspecified vulnerability in Microsoft Terminal Server, Windows 2000 and Windows NT Microsoft TCP/IP Printing Services, aka Print Services for Unix, allows an attacker to cause a denial of service via a malformed TCP/IP print request. | 2.1 |
2000-03-20 | CVE-2000-0226 | Unspecified vulnerability in Microsoft Internet Information Server 4.0 IIS 4.0 allows attackers to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability." | 5.0 |
2000-03-17 | CVE-2000-0228 | Unspecified vulnerability in Microsoft Windows Media Rights Manager 4.0/4.1 Microsoft Windows Media License Manager allows remote attackers to cause a denial of service by sending a malformed request that causes the manager to halt, aka the "Malformed Media License Request" Vulnerability. | 5.0 |
2000-03-14 | CVE-2000-0199 | Weak Password Encryption vulnerability in Microsoft SQL Server 7.0 When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password. | 7.2 |
2000-03-08 | CVE-2000-0202 | Unspecified vulnerability in Microsoft Data Engine and SQL Server Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query. | 7.5 |
2000-03-06 | CVE-2000-0200 | Unspecified vulnerability in Microsoft Clip Art, Greetings and Home Publishing Buffer overflow in Microsoft Clip Art Gallery allows remote attackers to cause a denial of service or execute commands via a malformed CIL (clip art library) file, aka the "Clip Art Buffer Overrun" vulnerability. | 5.1 |