search

Windows Server 2003 updates after SP2

Ngày đăng: 02/01/2023
Trả lời: 0
Lượt xem: 26

# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2019-0708 416 Exec Code 2019-05-16 2021-06-03

10.0

Show
None Remote Low Not required Complete Complete Complete
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
2 CVE-2017-8487 Exec Code 2017-06-15 2019-10-03

9.3

None Remote Medium Not required Complete Complete Complete
Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerability."
3 CVE-2017-8461 Exec Code 2017-06-15 2021-03-29

6.9

None Local Medium Not required Complete Complete Complete
Windows RPC with Routing and Remote Access enabled in Windows XP and Windows Server 2003 allows an attacker to execute code on a targeted RPC server which has Routing and Remote Access enabled via a specially crafted application, aka "Windows RPC Remote Code Execution Vulnerability."
4 CVE-2017-0176 120 Exec Code Overflow 2017-06-22 2019-10-24

9.3

None Remote Medium Not required Complete Complete Complete
A buffer overflow in Smart Card authentication code in gpkcsp.dll in Microsoft Windows XP through SP3 and Server 2003 through SP2 allows a remote attacker to execute arbitrary code on the target computer, provided that the computer is joined in a Windows domain and has Remote Desktop Protocol connectivity (or Terminal Services) enabled.
5 CVE-2015-2360 119 DoS Overflow +Priv Mem. Corr. 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
6 CVE-2015-1768 119 DoS Overflow +Priv Mem. Corr. 2015-06-10 2018-10-12

7.2

None Local Low Not required Complete Complete Complete
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka "Win32k Memory Corruption Elevation of Privilege Vulnerability."
7 CVE-2015-1727 119 Overflow +Priv 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Pool Buffer Overflow Vulnerability."
8 CVE-2015-1726 416 +Priv 2015-06-10 2019-05-15

7.2

None Local Low Not required Complete Complete Complete
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Microsoft Windows Kernel Brush Object Use After Free Vulnerability."
9 CVE-2015-1725 119 Overflow +Priv 2015-06-10 2019-05-15

7.2

None Local Low Not required Complete Complete Complete
Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Buffer Overflow Vulnerability."
10 CVE-2015-1724 416 +Priv 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Microsoft Windows Kernel Object Use After Free Vulnerability."
11 CVE-2015-1723 416 +Priv 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Microsoft Windows Station Use After Free Vulnerability."
12 CVE-2015-1722 416 +Priv 2015-06-10 2019-05-13

7.2

None Local Low Not required Complete Complete Complete
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Microsoft Windows Kernel Bitmap Handling Use After Free Vulnerability."
13 CVE-2015-1721 476 DoS +Priv 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
The kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a crafted application, aka "Win32k Null Pointer Dereference Vulnerability."
14 CVE-2015-1720 416 +Priv 2015-06-10 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Microsoft Windows Kernel Use After Free Vulnerability."
15 CVE-2015-1719 200 +Info 2015-06-10 2019-05-14

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to obtain sensitive information from kernel memory via a crafted application, aka "Microsoft Windows Kernel Information Disclosure Vulnerability."
16 CVE-2015-1716 200 +Info 2015-05-13 2019-05-15

5.0

None Remote Low Not required Partial None None
Schannel in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly restrict Diffie-Hellman Ephemeral (DHE) key lengths, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors, aka "Schannel Information Disclosure Vulnerability."
17 CVE-2015-1702 264 +Priv 2015-05-13 2019-05-15

6.9

None Local Medium Not required Complete Complete Complete
The Service Control Manager (SCM) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly constrain impersonation levels, which allows local users to gain privileges via a crafted application, aka "Service Control Manager Elevation of Privilege Vulnerability."
18 CVE-2015-1680 200 Bypass +Info 2015-05-13 2019-05-15

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the ASLR protection mechanism via a crafted function call, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability," a different vulnerability than CVE-2015-1676, CVE-2015-1677, CVE-2015-1678, and CVE-2015-1679.
19 CVE-2015-1679 200 Bypass +Info 2015-05-13 2019-05-13

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the ASLR protection mechanism via a crafted function call, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability," a different vulnerability than CVE-2015-1676, CVE-2015-1677, CVE-2015-1678, and CVE-2015-1680.
20 CVE-2015-1678 200 Bypass +Info 2015-05-13 2019-05-13

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the ASLR protection mechanism via a crafted function call, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability," a different vulnerability than CVE-2015-1676, CVE-2015-1677, CVE-2015-1679, and CVE-2015-1680.
21 CVE-2015-1677 200 Bypass +Info 2015-05-13 2019-05-13

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the ASLR protection mechanism via a crafted function call, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability," a different vulnerability than CVE-2015-1676, CVE-2015-1678, CVE-2015-1679, and CVE-2015-1680.
22 CVE-2015-1676 200 Bypass +Info 2015-05-13 2019-05-13

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to bypass the ASLR protection mechanism via a crafted function call, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability," a different vulnerability than CVE-2015-1677, CVE-2015-1678, CVE-2015-1679, and CVE-2015-1680.
23 CVE-2015-1645 94 Exec Code 2015-04-14 2018-10-12

9.3

None Remote Medium Not required Complete Complete Complete
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow remote attackers to execute arbitrary code via a crafted Enhanced Metafile (EMF) image, aka "EMF Processing Remote Code Execution Vulnerability."
24 CVE-2015-1644 264 +Priv 2015-04-14 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly constrain impersonation levels, which allows local users to gain privileges via a crafted application, aka "Windows MS-DOS Device Name Vulnerability."
25 CVE-2015-1643 264 +Priv 2015-04-14 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
Microsoft Windows Server 2003 R2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly constrain impersonation levels, which allows local users to gain privileges via a crafted application, aka "NtCreateTransactionManager Type Confusion Vulnerability."
26 CVE-2015-1637 310 2015-03-06 2021-04-07

4.3

None Remote Medium Not required None Partial None
Schannel (aka Secure Channel) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly restrict TLS state transitions, which makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204 and CVE-2015-1067.
27 CVE-2015-0096 426 Exec Code +Priv 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Untrusted search path vulnerability in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, leading to DLL loading during Windows Explorer access to the icon of a crafted shortcut, aka "DLL Planting Remote Code Execution Vulnerability."
28 CVE-2015-0095 476 DoS Bypass +Info 2015-03-11 2019-05-14

5.6

None Local Low Not required Partial None Complete
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to cause a denial of service (NULL pointer dereference and blue screen), or obtain sensitive information from kernel memory and possibly bypass the ASLR protection mechanism, via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."
29 CVE-2015-0094 200 Bypass +Info 2015-03-11 2019-05-14

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly restrict the availability of address information during a function call, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."
30 CVE-2015-0093 94 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "Adobe Font Driver Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-0088, CVE-2015-0090, CVE-2015-0091, and CVE-2015-0092.
31 CVE-2015-0092 94 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "Adobe Font Driver Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-0088, CVE-2015-0090, CVE-2015-0091, and CVE-2015-0093.
32 CVE-2015-0091 94 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "Adobe Font Driver Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-0088, CVE-2015-0090, CVE-2015-0092, and CVE-2015-0093.
33 CVE-2015-0090 94 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "Adobe Font Driver Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-0088, CVE-2015-0091, CVE-2015-0092, and CVE-2015-0093.
34 CVE-2015-0089 200 Bypass +Info 2015-03-11 2019-05-14

5.0

None Remote Low Not required Partial None None
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to obtain sensitive information from kernel memory, and possibly bypass the KASLR protection mechanism, via a crafted font, aka "Adobe Font Driver Information Disclosure Vulnerability," a different vulnerability than CVE-2015-0087.
35 CVE-2015-0088 94 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "Adobe Font Driver Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-0090, CVE-2015-0091, CVE-2015-0092, and CVE-2015-0093.
36 CVE-2015-0087 200 Bypass +Info 2015-03-11 2019-05-14

5.0

None Remote Low Not required Partial None None
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to obtain sensitive information from kernel memory, and possibly bypass the KASLR protection mechanism, via a crafted font, aka "Adobe Font Driver Information Disclosure Vulnerability," a different vulnerability than CVE-2015-0089.
37 CVE-2015-0081 19 Exec Code 2015-03-11 2019-05-14

9.3

None Remote Medium Not required Complete Complete Complete
Windows Text Services (WTS) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) file, aka "WTS Remote Code Execution Vulnerability."
38 CVE-2015-0080 200 +Info 2015-03-11 2019-05-14

4.3

None Remote Medium Not required Partial None None
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly initialize memory for rendering of malformed PNG images, which allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Malformed PNG Parsing Information Disclosure Vulnerability."
39 CVE-2015-0077 200 Bypass +Info 2015-03-11 2019-05-14

2.1

None Local Low Not required Partial None None
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly initialize function buffers, which allows local users to obtain sensitive information from kernel memory, and possibly bypass the ASLR protection mechanism, via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."
40 CVE-2015-0074 119 DoS Overflow 2015-03-11 2019-05-14

4.3

None Remote Medium Not required None None Partial
Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly allocate memory, which allows remote attackers to cause a denial of service via a crafted (1) web site or (2) file, aka "Adobe Font Driver Denial of Service Vulnerability."
41 CVE-2015-0073 264 +Priv 2015-03-11 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
The Windows Registry Virtualization feature in the kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly restrict changes to virtual stores, which allows local users to gain privileges via a crafted application, aka "Registry Virtualization Elevation of Privilege Vulnerability."
42 CVE-2015-0061 200 +Info 2015-02-11 2019-05-14

4.3

None Remote Medium Not required Partial None None
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly initialize memory for TIFF images, which allows remote attackers to obtain sensitive information from process memory via a crafted image file, aka "TIFF Processing Information Disclosure Vulnerability."
43 CVE-2015-0060 19 DoS 2015-02-11 2019-05-14

4.7

None Local Medium Not required None None Complete
The font mapper in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly scale fonts, which allows local users to cause a denial of service (system hang) via a crafted application, aka "Windows Font Driver Denial of Service Vulnerability."
44 CVE-2015-0057 264 +Priv 2015-02-11 2019-05-14

7.2

None Local Low Not required Complete Complete Complete
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
45 CVE-2015-0015 399 DoS 2015-01-13 2018-10-12

7.8

None Remote Low Not required None None Complete
Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network Policy Server RADIUS Implementation Denial of Service Vulnerability."
46 CVE-2015-0014 119 Exec Code Overflow 2015-01-13 2018-10-12

10.0

None Remote Low Not required Complete Complete Complete
Buffer overflow in the Telnet service in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows Telnet Service Buffer Overflow Vulnerability."
47 CVE-2015-0011 264 Bypass 2015-01-13 2018-10-12

4.7

None Local Medium Not required None Complete None
mrxdav.sys (aka the WebDAV driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass an impersonation protection mechanism, and obtain privileges for redirection of WebDAV requests, via a crafted application, aka "WebDAV Elevation of Privilege Vulnerability."
48 CVE-2015-0010 310 Bypass 2015-02-11 2019-05-15

1.9

None Local Medium Not required Partial None None
The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1, when the CRYPTPROTECTMEMORY_SAME_LOGON option is used, does not check an impersonation token's level, which allows local users to bypass intended decryption restrictions by leveraging a service that (1) has a named-pipe planting vulnerability or (2) uses world-readable shared memory for encrypted data, aka "CNG Security Feature Bypass Vulnerability" or MSRC ID 20707.
49 CVE-2015-0009 254 Bypass 2015-02-11 2019-10-29

3.3

None Local Network Low Not required None Partial None
The Group Policy Security Configuration policy implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows man-in-the-middle attackers to disable a signing requirement and trigger a revert-to-default action by spoofing domain-controller responses, aka "Group Policy Security Feature Bypass Vulnerability."
50 CVE-2015-0008 284 Exec Code 2015-02-11 2019-10-29

8.3

None Local Network Low Not required Complete Complete Complete
The UNC implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not include authentication from the server to the client, which allows remote attackers to execute arbitrary code by making crafted data available on a UNC share, as demonstrated by Group Policy data from a spoofed domain controller, aka "Group Policy Remote Code Execution Vulnerability."

Total number of vulnerabilities : 412   Page : 1 (This Page)2 3 4 5 6 7 8 9

Does Windows Update still work for Server 2003?

Microsoft will no longer issue security updates for any version of Windows Server 2003 without a premium support contract with Microsoft. Moreover, Shavlik Protect will not be offering security updates for any version of Windows Server 2003 without a support contract with Shavlik.

Can Windows Server 2003 be upgraded to 2008?

Upgrading Active Directory Domain Controllers The upgrade process from Windows Server 2003 to Windows Server 2008 requires free disk space for the new operating system image, for the Setup process, and for any installed server roles.

Does Server 2003 require smb1?

Windows 2003 was the last Windows operating system that was only using SMB v1, and it is now no longer supported by Microsoft. All the versions of Windows that have come after Windows 2003 are able to support SMB v2 or SMB v3, but normally, these systems are not the issue.

When did Microsoft stop supporting Windows Server 2003?

However, the product reached its end of life on July 14, 2015. Microsoft has not released patches for new security vulnerabilities since the Windows Server 2003 end of life (EOL) date.

Windows Update Tool

Bài Viết Liên Quan

Ngành kinh doanh tiếng anh là gì năm 2024
Ngành kinh doanh tiếng anh là gì năm 2024

là ai Hỏi Đáp Là gì Học Tốt Tiếng anh
Top 10 tác giả ngôn tình hay nhất năm 2024
Top 10 tác giả ngôn tình hay nhất năm 2024

mẹo hay Top List Top
Máy photo ricoh in hay dừng là bị gì năm 2024
Máy photo ricoh in hay dừng là bị gì năm 2024

là ai Công Nghệ Máy Máy photocopy
Đề kiểm tra toán lớp 10 chương 1 đại số năm 2024
Đề kiểm tra toán lớp 10 chương 1 đại số năm 2024

mẹo hay
Giải sách bài tập vật lý 9 bài 1 năm 2024
Giải sách bài tập vật lý 9 bài 1 năm 2024

mẹo hay Khỏe Đẹp Bài tập Học Tốt Sách
Thức ăn của trùng kiết lị là gì năm 2024
Thức ăn của trùng kiết lị là gì năm 2024

là ai Hỏi Đáp Là gì
Tóm tắt văn bản tôi đi học hay nhất năm 2024
Tóm tắt văn bản tôi đi học hay nhất năm 2024

mẹo hay Học Tốt Học Top List Tóm tắt
Chồng nhà văn nguyễn quỳnh trang là ai năm 2024
Chồng nhà văn nguyễn quỳnh trang là ai năm 2024

mẹo hay Hỏi Đáp Là ai Xây Đựng Nhà
Thuốc tatanol 500mg là thuốc gì năm 2024
Thuốc tatanol 500mg là thuốc gì năm 2024

là ai Khỏe Đẹp Thuốc
Choang voi văn hóa công so o thai binh năm 2024
Choang voi văn hóa công so o thai binh năm 2024

mẹo hay
Nơi nhận trong quyết định thôi việc là gì năm 2024
Nơi nhận trong quyết định thôi việc là gì năm 2024

là ai Hỏi Đáp Là gì
Anh văn 10 unit 8 new ways to learn năm 2024
Anh văn 10 unit 8 new ways to learn năm 2024

mẹo hay
Làm sao để vô hiệu hóa messenger trên iphone năm 2024
Làm sao để vô hiệu hóa messenger trên iphone năm 2024

mẹo hay Hỏi Đáp Làm sao Công Nghệ Iphone
Top những nước có đồng tiền thấp nhất thế giới năm 2024
Top những nước có đồng tiền thấp nhất thế giới năm 2024

mẹo hay Top List Top
Nhà nước có chủ quyền quốc gia là gì năm 2024
Nhà nước có chủ quyền quốc gia là gì năm 2024

là ai Hỏi Đáp Là gì Xây Đựng Nhà
Bài tập tự luận về đại cương sóng cơ năm 2024
Bài tập tự luận về đại cương sóng cơ năm 2024

mẹo hay Khỏe Đẹp Bài tập Giao thoa sóng Sóng cơ là
Kí hiệu ms trong hệ thống chữa cháy là gì năm 2024
Kí hiệu ms trong hệ thống chữa cháy là gì năm 2024

là ai Hỏi Đáp Là gì
Đồ hóa trang halloween cho bé trai ở hà nội năm 2024
Đồ hóa trang halloween cho bé trai ở hà nội năm 2024

mẹo hay Giới Tính Trai
Lỗi this column has more than 10000 unique itens năm 2024
Lỗi this column has more than 10000 unique itens năm 2024

mẹo hay
Người sinh năm 1987 là tuổi gì năm 2024
Người sinh năm 1987 là tuổi gì năm 2024

là ai

Quảng Cáo

Có thể bạn quan tâm

Giau bai tap sgk toán 8 tập 2 trang 130 năm 2024
3 ngày trước . bởi PerennialWidth
Ai cập là cầu nối giữa các châu lục nào năm 2024
3 ngày trước . bởi InfluentialMaintenance
Hoạt hóa bổ thể c3 trên bề mặt vi khuẩn năm 2024
3 ngày trước . bởi SelectiveProvider
Phép vua thua lệ làng tiếng anh là gì năm 2024
3 ngày trước . bởi BurnishedSarcasm
Hoạt động điều phối trong chuỗi cung ứng là gì năm 2024
3 ngày trước . bởi LoadedDishonesty
Giải bài tập địa lý 7 trong vở bài tập năm 2024
3 ngày trước . bởi AnalQuilting
Khi nào nên đi siêu âm thai lần đầu tiên năm 2024
3 ngày trước . bởi OverlappingAbbey
Đừng hiểu lầm tiếng anh là gì năm 2024
3 ngày trước . bởi EcologicalSufferer
Cá nhân thanh toán tiền dịch vụ cho nước ngoài năm 2024
3 ngày trước . bởi Red-facedJoseph
Nghỉ phép được hưởng lương như thế nào năm 2024
3 ngày trước . bởi UnderdevelopedForefinger

Toplist được quan tâm

#1
Top 8 bài 6 trang 38 sgk toán 8 tập 2 2023
6 tháng trước
#2
Top 10 bài 1 (trang 44 sgk văn 12) 2023
6 tháng trước
#3
Top 9 vở bài tập tiếng việt lớp 4 tập 2 tuần 28 ôn tập giữa học kì 2 tiết 2 2023
6 tháng trước
#4
Top 5 phương pháp giải bài tập benzen violet 2023
6 tháng trước
#5
Top 7 câu trúc nào của giun đất tiến hóa hơn giun dẹp và giun tròn 2023
6 tháng trước
#6
Top 10 em có nhận xét gì về âm điệu nhịp điệu của bài thơ 2023
6 tháng trước
#7
Top 4 võ ánh tam thiên đạo truyện tranh nettruyen 2023
6 tháng trước
#8
Top 5 phim pháp y tần minh - lời khai câm lặng full 2023
6 tháng trước
#9
Top 7 người ta tác dụng một lực 2n vào một lò xo thì nó bị biến dạng 2cm độ cứng của lò xo là 2023
6 tháng trước

Quảng cáo

Xem Nhiều

Giải ngoại hạng anh tiếng anh là gì năm 2024
2 ngày trước . bởi AccessibleMeasurement
Top những nước có đồng tiền thấp nhất thế giới năm 2024
11 giờ trước . bởi OffhandScouring
Định mức trong xuất nhập khẩu là gì tiếng anh năm 2024
6 ngày trước . bởi FelinePasta
Tại sao máy tính bị lỗi trình duyệt has stopped năm 2024
1 tuần trước . bởi PettyBallet
Làm bài tập ngữ pháp tiếng anh online năm 2024
1 ngày trước . bởi SurrealFertilization
Chùa quán sứ nằm ở quận nào của hà nội năm 2024
1 tuần trước . bởi EnchantingPendulum
Các bài tập giúp cánh tay thon gọn năm 2024
1 ngày trước . bởi VisionaryCivility
Bà ngoại tôi gửi lời xin lỗi goodread năm 2024
1 tuần trước . bởi NeedlessInvolvement
Khô rát cổ họng là bệnh gì năm 2024
1 tuần trước . bởi HuntedCropping
Khắc phục lỗi latop không kết nối máy chiếu năm 2024
2 ngày trước . bởi GuidingContractor

Quảng cáo

Chúng tôi

Điều khoản

Trợ giúp

Mạng xã hội

DMCA.com Protection Status
Bản quyền © 2021 seongay.com Inc.