Microsoft » Windows Xp : Security Vulnerabilities (CVSS score between 2 and 2.99)

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2011-1886			2011-07-13	2018-10-12	2.1	None	Local	Low	Not required	Partial	None	None
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3 does not properly validate the arguments to functions, which allows local users to read arbitrary data from kernel memory via a crafted application that triggers a NULL pointer dereference, aka "Win32k Incorrect Parameter Validation Allows Information Disclosure Vulnerability."
2	CVE-2007-3724		DoS	2007-07-12	2008-11-15	2.1	None	Local	Low	Not required	None	None	Partial
The process scheduler in the Microsoft Windows XP kernel does not make use of the process statistics kept by the kernel, performs scheduling based on CPU billing gathered from periodic process sampling ticks, and gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service (CPU consumption), as described in "Secretly Monopolizing the CPU Without Superuser Privileges."
3	CVE-2006-5614		DoS	2006-10-31	2017-10-19	2.6	None	Remote	High	Not required	None	None	Partial
Microsoft Windows NAT Helper Components (ipnathlp.dll) on Windows XP SP2, when Internet Connection Sharing is enabled, allows remote attackers to cause a denial of service (svchost.exe crash) via a malformed DNS query, which results in a null pointer dereference.
4	CVE-2006-4071		DoS	2006-08-10	2018-10-17	2.6	None	Remote	High	Not required	None	None	Partial
Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted attackers to cause a denial of service (application crash) via a crafted WMF file.
5	CVE-2006-4066		DoS	2006-08-10	2018-10-17	2.6	None	Remote	High	Not required	None	None	Partial
The Graphical Device Interface Plus library (gdiplus.dll) in Microsoft Windows XP SP2 allows context-dependent attackers to cause a denial of service (application crash) via certain images that trigger a divide-by-zero error, as demonstrated by a (1) .ico file, (2) .png file that crashes MSN Messenger, and (3) .jpg file that crashes Internet Explorer. NOTE: another researcher has not been able to reproduce this issue.
6	CVE-2006-2374	399	DoS	2006-06-13	2018-10-12	2.1	None	Local	Low	Not required	None	None	Partial
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock, aka the "SMB Invalid Handle Vulnerability."
7	CVE-2006-2334			2006-05-12	2018-10-18	2.1	None	Local	Low	Not required	None	Partial	None
The RtlDosPathNameToNtPathName_U API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cannot be accessed through the expected DOS path or prevent access to other similarly named files in the same directory, which prevents those files from being detected or disinfected by certain anti-virus and anti-spyware software.
8	CVE-2006-1476			2006-03-29	2018-10-18	2.6	None	Remote	High	Not required	None	Partial	None
Windows Firewall in Microsoft Windows XP SP2 produces incorrect application block alerts when the application filename is ".exe" (with no characters before the "."), which might allow local user-assisted users to trick a user into unblocking a Trojan horse program, as demonstrated by a malicious ".exe" program in a folder named "Internet Explorer," which triggers a question about whether to unblock the "Internet Explorer" program.
9	CVE-2006-1475			2006-03-29	2018-10-18	2.1	None	Local	Low	Not required	None	Partial	None
Windows Firewall in Microsoft Windows XP SP2 does not produce application alerts when an application is executed using the NTFS Alternate Data Streams (ADS) filename:stream syntax, which might allow local users to launch a Trojan horse attack in which the victim does not obtain the alert that Windows Firewall would have produced for a non-ADS file.
10	CVE-2006-0488		+Info	2006-02-01	2018-10-19	2.1	None	Local	Low	Not required	Partial	None	None
The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possibly obtain sensitive information, as demonstrated by dumper.asm.
11	CVE-2005-4697			2005-12-31	2017-07-20	2.1	None	Local	Low	Not required	Partial	None	None
The Microsoft Wireless Zero Configuration system (WZCS) allows local users to access WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key via certain calls to the WZCQueryInterface API function in wzcsapi.dll.
12	CVE-2005-4696			2005-12-31	2017-10-05	2.1	None	Local	Low	Not required	Partial	None	None
The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attackers with access to process memory to steal the keys and access the network.
13	CVE-2005-2765			2005-09-01	2008-09-05	2.1	None	Local	Low	Not required	None	Partial	None
The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. CVE has not yet formally decided if such "information hiding" issues should be included.
14	CVE-2005-2126			2005-10-21	2018-10-12	2.6	None	Remote	High	Not required	None	Partial	None
The FTP client in Windows XP SP1 and Server 2003, and Internet Explorer 6 SP1 on Windows 2000 SP4, when "Enable Folder View for FTP Sites" is enabled and the user manually initiates a file transfer, allows user-assisted, remote FTP servers to overwrite files in arbitrary locations via crafted filenames.
15	CVE-2005-0904	20		2005-05-02	2017-07-11	2.1	None	Local	Low	Not required	None	None	Partial
Remote Desktop in Windows XP SP1 does not verify the "Force shutdown from a remote system" setting, which allows remote attackers to shut down the system by executing TSShutdn.exe.
16	CVE-2005-0852		DoS	2005-05-02	2008-09-05	2.1	None	Local	Low	Not required	None	None	Partial
Microsoft Windows XP SP1 allows local users to cause a denial of service (system crash) via an empty datagram to a raw IP over IP socket (IP protocol 4), as originally demonstrated using code in Python 2.3.
17	CVE-2005-0550		DoS Overflow	2005-05-02	2018-10-12	2.1	None	Local	Low	Not required	None	None	Partial
Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
18	CVE-2004-2365		DoS	2004-12-31	2017-07-11	2.1	None	Local	Low	Not required	None	None	Partial
Memory leak in Microsoft Windows XP and Windows Server 2003 allows local users to cause a denial of service (memory exhaustion) by repeatedly creating and deleting directories using a non-standard tool such as smbmount.
19	CVE-2004-0207		+Priv	2004-11-03	2018-10-12	2.1	None	Local	Low	Not required	None	Partial	None
"Shatter" style vulnerability in the Window Management application programming interface (API) for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to gain privileges by using certain API functions to change properties of privileged programs using the SetWindowLong and SetWIndowLongPtr API functions.
20	CVE-2004-0124			2004-06-01	2018-10-12	2.6	None	Remote	High	Not required	Partial	None	None
The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."
21	CVE-2002-2132			2002-12-31	2017-11-21	2.1	None	Local	Low	Not required	None	Partial	None
Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.
22	CVE-2002-2105			2002-12-31	2017-12-19	2.1	None	Local	Low	Not required	None	None	Partial
Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.
23	CVE-2002-2028			2002-12-31	2019-04-30	2.1	None	Local	Low	Not required	Partial	None	None
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
24	CVE-2001-1570			2001-12-31	2008-09-05	2.1	None	Local	Low	Not required	None	None	Partial
Windows XP with fast user switching and account lockout enabled allows local users to deny user account access by setting the fast user switch to the same user (self) multiple times, which causes other accounts to be locked out.
25	CVE-2001-1560		DoS	2001-12-31	2019-04-30	2.1	None	Local	Low	Not required	None	None	Partial
Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.

Total number of vulnerabilities : 25 Page : 1 (This Page)