Vulnerabilities > Microsoft > Windows XP
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-03-08 | CVE-2002-0053 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft products Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. | 7.5 |
2001-12-31 | CVE-2001-1571 | Remote Desktop Plaintext Username vulnerability in Microsoft Windows XP The Remote Desktop client in Windows XP sends the most recent user account name in cleartext, which could allow remote attackers to obtain terminal server user account names via sniffing. | 5.0 |
2001-12-31 | CVE-2001-1570 | Unspecified vulnerability in Microsoft Windows XP Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out. | 2.1 |
2001-12-31 | CVE-2001-1560 | Denial of Service vulnerability in Microsoft Windows 2000 and Windows XP Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message. | 2.1 |
2001-12-20 | CVE-2001-0879 | Unspecified vulnerability in Microsoft products Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service. | 5.0 |
2001-12-20 | CVE-2001-0877 | Denial of Service vulnerability in Microsoft Universal Plug and Play Simple Service Discovery Protocol Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service via (1) a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic (e.g., chargen), or (2) via a spoofed SSDP announcement to broadcast or multicast addresses, which could cause all UPnP clients to send traffic to a single target system. | 5.0 |
2001-12-20 | CVE-2001-0876 | Buffer Overflow vulnerability in Microsoft UPnP NOTIFY Buffer overflow in Universal Plug and Play (UPnP) on Windows 98, 98SE, ME, and XP allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL. | 7.5 |
2001-12-17 | CVE-2001-1200 | Unspecified vulnerability in Microsoft Windows XP Microsoft Windows XP allows local users to bypass a locked screen and run certain programs that are associated with Hot Keys. | 7.2 |
2001-12-06 | CVE-2001-0860 | Unspecified vulnerability in Microsoft Windows 2000 and Windows XP Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. | 7.5 |
2001-12-06 | CVE-2001-0721 | Unspecified vulnerability in Microsoft products Universal Plug and Play (UPnP) in Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service (memory consumption or crash) via a malformed UPnP request. | 5.0 |