Vulnerabilities > Microsoft > Windows XP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-02-19 | CVE-2003-0004 | Privilege Escalation vulnerability in Microsoft Windows XP Redirector Buffer overflow in the Windows Redirector function in Microsoft Windows XP allows local users to execute arbitrary code via a long parameter. | 7.2 |
| 2003-02-07 | CVE-2003-0003 | Buffer Overflow vulnerability in Microsoft Windows Locator Service Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service containing certain parameter information. | 7.5 |
| 2002-12-31 | CVE-2002-2324 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings. | 7.2 |
| 2002-12-31 | CVE-2002-2283 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user to view processes of other users. | 1.9 |
| 2002-12-31 | CVE-2002-2185 | Denial Of Service vulnerability in Multiple Vendor Spoofed IGMP Report The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network. | 4.9 |
| 2002-12-31 | CVE-2002-2132 | Unspecified vulnerability in Microsoft Windows 2000 and Windows XP Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes. | 2.1 |
| 2002-12-31 | CVE-2002-2105 | Denial of Service vulnerability in Microsoft Windows XP .Manifest Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file. | 2.1 |
| 2002-12-31 | CVE-2002-1670 | Unspecified vulnerability in Microsoft Internet Explorer and Windows XP Microsoft Windows XP Professional upgrade edition overwrites previously installed patches for Internet Explorer 6.0, leaving Internet Explorer unpatched. | 4.6 |
| 2002-12-26 | CVE-2002-1327 | Buffer Overrun vulnerability in Microsoft Windows XP WMA/MP3 Attributes Buffer overflow in the Windows Shell function in Microsoft Windows XP allows remote attackers to execute arbitrary code via an .MP3 or .WMA audio file with a corrupt custom attribute, aka "Unchecked Buffer in Windows Shell Could Enable System Compromise." | 7.5 |
| 2002-12-23 | CVE-2002-1325 | Information Disclosure vulnerability in Microsoft Java Virtual Machine user.dir Access Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability." | 5.0 |