Microsoft » Windows 2003 Server : Security Vulnerabilities, CVEs, Published In December 2009 (Denial of service)
ir32_32.dll 3.24.15.3 in the Indeo32 codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service (heap corruption) or execute arbitrary code via malformed data in a stream in a media file, as demonstrated by an AVI file.
Max CVSS
9.3
EPSS Score
10.41%
Published
2009-12-13
Updated
2017-09-19
The Indeo codec in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted media content.
Max CVSS
9.3
EPSS Score
2.33%
Published
2009-12-13
Updated
2018-10-10
LSASS.exe in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote authenticated users to cause a denial of service (CPU consumption) via a malformed ISAKMP request over IPsec, aka "Local Security Authority Subsystem Service Resource Exhaustion Vulnerability."
Max CVSS
6.8
EPSS Score
9.23%
Published
2009-12-09
Updated
2018-10-30
3 vulnerabilities found