Product:

Windows_2003_server

(Microsoft)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 407
Date Id Summary Products Score Patch Annotated
2003-11-17 CVE-2003-0660 The Authenticode capability in Microsoft Windows NT through Server 2003 does not prompt the user to download and install ActiveX controls when the system is low on memory, which could allow remote attackers to execute arbitrary code without user approval. Windows_2000, Windows_2003_server, Windows_nt, Windows_xp N/A
2003-11-17 CVE-2003-0659 Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox controls in a privileged application. Windows_2000, Windows_2003_server, Windows_nt, Windows_xp N/A
2003-09-17 CVE-2003-0528 Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed RPC request with a long filename parameter, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0715. Windows_2000, Windows_2003_server, Windows_nt, Windows_xp N/A
2003-08-18 CVE-2003-0352 Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms. Windows_2000, Windows_2003_server, Windows_nt, Windows_xp N/A
2015-07-14 CVE-2015-2369 Untrusted search path vulnerability in Windows Media Device Manager in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rtf file, aka "DLL Planting Remote Code Execution Vulnerability." Windows_2003_server, Windows_7, Windows_server_2008, Windows_vista N/A
2015-07-14 CVE-2015-2363 win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." Windows_2003_server, Windows_7, Windows_8, Windows_8\.1, Windows_rt, Windows_server_2008, Windows_server_2012, Windows_vista N/A
2015-06-09 CVE-2015-1768 win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka "Win32k Memory Corruption Elevation of Privilege Vulnerability." Windows_2003_server, Windows_server_2003 N/A
2015-03-11 CVE-2015-0075 The kernel in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 does not properly constrain impersonation levels, which allows local users to gain privileges via a crafted application, aka "Impersonation Level Check Elevation of Privilege Vulnerability." Windows_2003_server, Windows_7, Windows_server_2008, Windows_vista N/A
2011-09-15 CVE-2011-1984 WINS in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges by sending crafted packets over the loopback interface, aka "WINS Local Elevation of Privilege Vulnerability." Windows_2003_server, Windows_server_2003, Windows_server_2008 N/A
2011-08-10 CVE-2011-1974 NDISTAPI.sys in the NDISTAPI driver in Remote Access Service (RAS) in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "NDISTAPI Elevation of Privilege Vulnerability." Windows_2003_server, Windows_server_2003, Windows_xp N/A