Windows_2003_server - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Windows_2003_server
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	407

Date	Id	Summary	Products	Score	Patch	Annotated
2006-01-10	CVE-2006-0010	Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an e-mail message or web page with a crafted Embedded Open Type (EOT) web font that triggers the overflow during decompression.	Windows_2000, Windows_2003_server, Windows_98, Windows_98se, Windows_me, Windows_nt, Windows_xp	N/A
2006-02-14	CVE-2006-0005	Buffer overflow in the plug-in for Microsoft Windows Media Player (WMP) 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src attribute.	Windows\-Nt, Windows_2000, Windows_2000_advanced_server, Windows_2003_server, Windows_server_2000, Windows_server_2003, Windows_xp	N/A
2005-12-01	CVE-2005-3945	The SynAttackProtect protection in Microsoft Windows 2003 before SP1 and Windows 2000 before SP4 with Update Roll-up uses a hash of predictable data, which allows remote attackers to cause a denial of service (CPU consumption) via a flood of SYN packets that produce identical hash values, which slows down the hash table lookups.	Windows_2000, Windows_2003_server	N/A
2005-10-21	CVE-2005-2122	Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to execute arbitrary commands via a shortcut (.lnk) file with long font properties that lead to a buffer overflow in the Client/Server Runtime Server Subsystem (CSRSS), a different vulnerability than CVE-2005-2118.	Windows_2000, Windows_2003_server, Windows_xp	N/A
2005-10-21	CVE-2005-2118	Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote user-assisted attackers to execute arbitrary commands via a crafted shortcut (.lnk) file with long font properties that lead to a buffer overflow when the user views the file's properties using Windows Explorer, a different vulnerability than CVE-2005-2122.	Windows_2000, Windows_2003_server, Windows_xp	N/A
2005-08-10	CVE-2005-1982	Unknown vulnerability in the PKINIT Protocol for Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow a local user to obtain information and spoof a server via a man-in-the-middle (MITM) attack between a client and a domain controller when PKINIT smart card authentication is being used.	Windows_2000, Windows_2003_server, Windows_xp	N/A
2005-08-10	CVE-2005-1981	Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.	Windows_2000, Windows_2003_server	N/A
2005-08-10	CVE-2005-1218	The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.	Windows_2000, Windows_2003_server, Windows_xp	N/A
2005-06-14	CVE-2005-1214	Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page.	Windows_2000, Windows_2000_terminal_services, Windows_2003_server, Windows_98, Windows_98se, Windows_me, Windows_xp	N/A
2005-06-14	CVE-2005-1212	Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.	Windows_2000, Windows_2000_terminal_services, Windows_2003_server, Windows_98, Windows_98se, Windows_me, Windows_xp	N/A