Vulnerabilities > Microsoft > Windows 2000 > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-02-13 | CVE-2007-0026 | Remote Code Execution vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP The OLE Dialog component in Microsoft Windows 2000 SP4, XP SP2, and 2003 SP1 allows user-assisted remote attackers to execute arbitrary code via an RTF file with a malformed OLE object that triggers memory corruption. | 7.6 |
2006-12-26 | CVE-2006-6723 | Resource Management Errors vulnerability in Microsoft Windows 2000 and Windows XP The Workstation service in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to cause a denial of service (memory consumption) via a large maxlen value in an NetrWkstaUserEnum RPC request. | 7.8 |
2006-12-13 | CVE-2006-5584 | Remote Installation Service Remote Code Execution vulnerability in Microsoft Windows 2000 The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 uses a TFTP server that allows anonymous access, which allows remote attackers to upload and overwrite arbitrary files to gain privileges on systems that use RIS. | 7.5 |
2006-11-14 | CVE-2006-4688 | Remote Code Execution vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP Buffer overflow in Client Service for NetWare (CSNW) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via crafted messages, aka "Client Service for NetWare Memory Corruption Vulnerability." | 7.5 |
2006-11-14 | CVE-2006-3445 | Numeric Errors vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP Integer overflow in the ReadWideString function in agentdpv.dll in Microsoft Agent on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code via a large length value in an .ACF file, which results in a heap-based buffer overflow. | 7.5 |
2006-11-06 | CVE-2006-5758 | Buffer Errors vulnerability in Microsoft Windows 2000 and Windows XP The Graphics Rendering Engine in Microsoft Windows 2000 through 2000 SP4 and Windows XP through SP2 maps GDI Kernel structures on a global shared memory section that is mapped with read-only permissions, but can be remapped by other processes as read-write, which allows local users to cause a denial of service (memory corruption and crash) and gain privileges by modifying the kernel structures. | 7.2 |
2006-08-09 | CVE-2006-3648 | Remote Code Execution vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP Unspecified vulnerability in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 and 2003 SP1, allows remote attackers to execute arbitrary code via unspecified vectors involving unhandled exceptions, memory resident applications, and incorrectly "unloading chained exception." | 7.6 |
2006-08-09 | CVE-2006-3443 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows 2000 Untrusted search path vulnerability in Winlogon in Microsoft Windows 2000 SP4, when SafeDllSearchMode is disabled, allows local users to gain privileges via a malicious DLL in the UserProfile directory, aka "User Profile Elevation of Privilege Vulnerability." | 7.2 |
2006-08-09 | CVE-2006-3444 | Local Privilege Escalation vulnerability in Microsoft Windows 2000 Kernel Unspecified vulnerability in the kernel in Microsoft Windows 2000 SP4, probably a buffer overflow, allows local users to obtain privileges via unspecified vectors involving an "unchecked buffer." | 7.5 |
2006-07-31 | CVE-2006-3942 | Improper Input Validation vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the ExecuteTransaction function, possibly related to an "SMB PIPE," aka the "Mailslot DOS" vulnerability. | 7.8 |