Vulnerabilities > Microsoft > Windows 2000 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-20 | CVE-2001-0879 | Unspecified vulnerability in Microsoft products Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service. | 5.0 |
| 2001-12-07 | CVE-2001-0951 | Unspecified vulnerability in Microsoft Windows 2000 Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Internet Key Exchange (IKE) UDP port 500 with packets that contain a large number of dot characters. | 5.0 |
| 2001-12-06 | CVE-2001-0663 | Unspecified vulnerability in Microsoft Windows 2000 and Windows NT Terminal Server in Windows NT and Windows 2000 allows remote attackers to cause a denial of service via a sequence of invalid Remote Desktop Protocol (RDP) packets. | 5.0 |
| 2001-09-20 | CVE-2001-0659 | Buffer Overflow Denial of Service vulnerability in Microsoft Windows 2000 IrDA Buffer overflow in IrDA driver providing infrared data exchange on Windows 2000 allows attackers who are physically close to the machine to cause a denial of service (reboot) via a malformed IrDA packet. | 5.0 |
| 2001-09-20 | CVE-2001-0543 | Memory Leak vulnerability in Microsoft Exchange Server, Windows 2000 and Windows NT Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed posts. | 5.0 |
| 2001-09-20 | CVE-2001-0509 | Improper Input Validation vulnerability in Microsoft products Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and earlier, (2) Microsoft SQL Server 2000 and earlier, (3) Windows NT 4.0, and (4) Windows 2000 allow remote attackers to cause a denial of service via malformed inputs. | 5.0 |
| 2001-07-21 | CVE-2001-0502 | Unspecified vulnerability in Microsoft Windows 2000 Running Windows 2000 LDAP Server over SSL, a function does not properly check the permissions of a user request when the directory principal is a domain user and the data attribute is the domain password, which allows local users to modify the login password of other users. | 4.6 |
| 2001-07-21 | CVE-2001-0350 | Local Security vulnerability in Windows 2000 Server Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability. | 4.6 |
| 2001-07-21 | CVE-2001-0348 | Unspecified vulnerability in Microsoft Windows 2000 Microsoft Windows 2000 telnet service allows attackers to cause a denial of service (crash) via a long logon command that contains a backspace. | 5.0 |
| 2001-07-21 | CVE-2001-0346 | Unspecified vulnerability in Microsoft Windows 2000 Handle leak in Microsoft Windows 2000 telnet service allows attackers to cause a denial of service by starting a large number of sessions and terminating them. | 5.0 |