This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:microsoft:windows_server_2008::sp2
Detail
VendorMicrosoftFirst view 2008-11-12
ProductWindows Server 2008Last view2018-09-12
VersionTypeOs
Edition 
Language 
Updatesp2 
 
CPE Productcpe:/o:microsoft:windows_server_2008

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
102018-09-12CVE-2018-8421NetworkLowNone Requ...
52018-08-15CVE-2018-8360NetworkLowNone Requ...
2.12018-07-10CVE-2018-8356LocalLowNone Requ...
9.32018-07-10CVE-2018-8284NetworkMediumNone Requ...
7.22018-07-10CVE-2018-8202LocalLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.42018-05-09CVE-2018-8167LocalMediumNone Requ...
6.92018-05-09CVE-2018-8166LocalMediumNone Requ...
7.22018-05-09CVE-2018-8164LocalLowNone Requ...
9.32018-05-09CVE-2018-8136NetworkMediumNone Requ...
4.62018-05-09CVE-2018-1039LocalLowNone Requ...
7.42018-05-09CVE-2018-0959Adjacent ...MediumRequires ...
52018-05-09CVE-2018-0765NetworkLowNone Requ...
2.12018-04-11CVE-2018-8116LocalLowNone Requ...
7.62018-04-11CVE-2018-1020NetworkHighNone Requ...
6.92018-04-11CVE-2018-1008LocalMediumNone Requ...
7.62018-04-11CVE-2018-1001NetworkHighNone Requ...
2.62018-04-11CVE-2018-1000NetworkHighNone Requ...
7.62018-04-11CVE-2018-0996NetworkHighNone Requ...
4.32018-04-11CVE-2018-0989NetworkMediumNone Requ...
7.62018-04-11CVE-2018-0988NetworkHighNone Requ...
4.32018-04-11CVE-2018-0987NetworkMediumNone Requ...
2.62018-04-11CVE-2018-0981NetworkHighNone Requ...
4.32018-03-14CVE-2018-0891NetworkMediumNone Requ...
7.62018-03-14CVE-2018-0889NetworkHighNone Requ...

CWE : Common Weakness Enumeration

%idName
31% (106)CWE-264Permissions, Privileges, and Access Controls
28% (96)CWE-200Information Exposure
15% (51)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
9% (31)CWE-20Improper Input Validation
4% (14)CWE-284Access Control (Authorization) Issues
Hide | Show 14 More...
%idName
4% (14)CWE-19Data Handling
2% (7)CWE-254Security Features
2% (7)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (2)CWE-611Information Leak Through XML External Entity File Disclosure
0% (2)CWE-399Resource Management Errors
0% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
0% (1)CWE-415Double Free
0% (1)CWE-362Race Condition
0% (1)CWE-352Cross-Site Request Forgery (CSRF)
0% (1)CWE-310Cryptographic Issues
0% (1)CWE-295Certificate Issues
0% (1)CWE-287Improper Authentication
0% (1)CWE-255Credentials Management
0% (1)CWE-17Code

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:28844Impersonation level check elevation of privilege vulnerability - CVE-2015-007...
oval:org.mitre.oval:def:29406Hyper-V system data structure vulnerability - CVE-2015-2362 (MS15-068)
oval:org.mitre.oval:def:28191Kerberos checksum vulnerability - CVE-2014-6324 (MS14-068)
oval:org.mitre.oval:def:14446Color Control Panel Insecure Library Loading Vulnerability
oval:org.mitre.oval:def:6716ATL COM Initialization Vulnerability
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:6621ATL COM Initialization Vulnerability (CVE-2009-2493)
oval:org.mitre.oval:def:6473ATL COM Initialization Vulnerability
oval:org.mitre.oval:def:6421ATL COM Initialization Vulnerability
oval:org.mitre.oval:def:6304ATL COM Initialization Vulnerability
oval:org.mitre.oval:def:6245ATL COM Initialization Vulnerability
oval:org.mitre.oval:def:29149DLL planting remote code execution vulnerability - CVE-2015-2369 (MS15-069)
oval:org.mitre.oval:def:15845TrueType Font Parsing Vulnerability - MS12-078
oval:org.mitre.oval:def:28101EMF processing remote code execution vulnerability - CVE-2015-1645 (MS15-035)
oval:org.mitre.oval:def:15873Media Decompression Vulnerability - MS13-011
oval:org.mitre.oval:def:24592Ancillary Function Driver Elevation of Privilege Vulnerability - CVE-2014-176...
oval:org.mitre.oval:def:28863NETLOGON spoofing vulnerability - CVE-2015-0005 (MS15-027)
oval:org.mitre.oval:def:28084Graphics component information disclosure vulnerability - CVE-2014-6355 (MS14...
oval:org.mitre.oval:def:26160Windows OLE remote code execution vulnerability - CVE-2014-4114 (MS14-060)
oval:org.mitre.oval:def:27076Win32k.sys elevation of privilege vulnerability - CVE-2014-4113 (MS14-058)
oval:org.mitre.oval:def:15667TrueType Font Parsing Vulnerability (CVE-2012-0159)
oval:org.mitre.oval:def:15388TrueType Font Parsing Vulnerability (CVE-2012-0159)
oval:org.mitre.oval:def:26422TrueType font parsing remote code execution vulnerability - CVE-2014-4148 (MS...
oval:org.mitre.oval:def:27923Windows OLE remote code execution vulnerability - CVE-2014-6352 (MS14-064)
oval:org.mitre.oval:def:24871Windows journal remote code execution vulnerability - CVE-2014-1824 (MS14-038)
oval:org.mitre.oval:def:15901Windows Filename Parsing Vulnerability - MS12-081

SAINT Exploits

DescriptionLink
Windows OLE Package Manager CPackage::DoVerb() INF File Download VulnerabilityMore info here
Microsoft Word and WordPad RTF HTA handler command executionMore info here

Open Source Vulnerability Database (OSVDB)

idDescription
77908Microsoft Windows win32k.sys Safari IFRAME Height Attribute Handling Remote M...
64794Microsoft Multiple Products smtpsvc.dll DNS Implementation Predictable Transa...
64793Microsoft Multiple Products smtpsvc.dll DNS Implementation ID Transaction Ver...
56698Microsoft Visual Studio Active Template Library (ATL) Data Stream Object Inst...
54934Microsoft Windows Print Spooler Load Library Crafted RPC Message Arbitrary DL...
Hide | Show 1 More...
idDescription
50279Microsoft XML Core Services HTTP Request Header Field Cross-domain Session St...

ExploitDB Exploits

idDescription
35236MS14-064 Microsoft Windows OLE Package Manager Code Execution
35235MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python
35216MS Office 2007 and 2010 - OLE Arbitrary Command Execution
35101Windows TrackPopupMenu Win32k NULL Pointer Dereference
35055Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
Hide | Show 3 More...
idDescription
35020MS14-060 Microsoft Windows OLE Package Manager Code Execution
35019Windows OLE Package Manager SandWorm Exploit
26554Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation

OpenVAS Exploits

idDescription
2012-12-12Name : Microsoft Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (...
File : nvt/secpod_ms12-078.nasl
2012-12-12Name : Microsoft Windows File Handling Component Remote Code Execution Vulnerability...
File : nvt/secpod_ms12-081.nasl
2012-06-13Name : Microsoft Lync Remote Code Execution Vulnerabilities (2707956)
File : nvt/secpod_ms12-039.nasl
2012-05-14Name : Microsoft Silverlight Code Execution Vulnerabilities - 2681578 (Mac OS X)
File : nvt/secpod_ms12-034_macosx.nasl
2012-05-09Name : MS Security Update For Microsoft Office, .NET Framework, and Silverlight (268...
File : nvt/secpod_ms12-034.nasl
Hide | Show 14 More...
idDescription
2012-02-15Name : Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2660465)
File : nvt/secpod_ms12-008.nasl
2012-02-15Name : MS Windows Color Control Panel Remote Code Execution Vulnerability (2643719)
File : nvt/secpod_ms12-012.nasl
2012-01-19Name : Microsoft Windows Color Control Panel Privilege Escalation Vulnerability
File : nvt/gb_ms_win_color_control_panel_priv_escalation.nasl
2010-05-05Name : Microsoft Windows SMTP Server DNS spoofing vulnerability
File : nvt/gb_ms_smtp_dns_spoofing_vulnerability.nasl
2010-03-16Name : FreeBSD Ports: openoffice.org
File : nvt/freebsd_openoffice.org.nasl
2009-12-04Name : MS Internet Explorer 'Style' Object Remote Code Execution Vulnerability
File : nvt/gb_ms_ie_style_object_remote_code_exec_vuln.nasl
2009-11-11Name : SLES11: Security update for IBM Java 1.6.0
File : nvt/sles11_java-1_6_0-ibm1.nasl
2009-10-14Name : Microsoft Windows ATL COM Initialization Code Execution Vulnerability (973525)
File : nvt/secpod_ms09-055.nasl
2009-10-14Name : MS ATL ActiveX Controls for MS Office Could Allow Remote Code Execution (973965)
File : nvt/secpod_ms09-060.nasl
2009-08-14Name : Vulnerabilities in Microsoft ATL Could Allow Remote Code Execution (973908)
File : nvt/secpod_ms09-037.nasl
2009-08-03Name : Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
File : nvt/secpod_ms09-035.nasl
2009-06-10Name : Vulnerabilities in Print Spooler Could Allow Remote Code Execution (961501)
File : nvt/secpod_ms09-022.nasl
2008-11-12Name : Microsoft XML Core Services Remote Code Execution Vulnerability (955218)
File : nvt/secpod_ms08-069_900058.nasl
0000-00-00Name : Microsoft Windows Kernel 'win32k.sys' Memory Corruption Vulnerability
File : nvt/gb_ms_win_kernel_win32k_sys_mem_corruption_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-B-0110Microsoft Active Directory Service Denial of Service Vulnerability (MS15-096)
Severity : Category II - VMSKEY : V0061369
2015-A-0212Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097)
Severity : Category II - VMSKEY : V0061385
2015-B-0097Microsoft Windows UDDI Cross Site Scripting Vulnerability (MS15-087)
Severity : Category II - VMSKEY : V0061287
2015-A-0198Microsoft Server Message Block (SMB) Remote Code Execution Vulnerability (MS1...
Severity : Category II - VMSKEY : V0061315
2015-A-0162Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-073)
Severity : Category II - VMSKEY : V0061097
Hide | Show 16 More...
idDescription
2015-B-0091Multiple Vulnerabilities in Microsoft Hyper-V (MS15-068)
Severity : Category II - VMSKEY : V0061119
2015-A-0167Multiple Vulnerabilities in Microsoft Windows (MS15-069)
Severity : Category II - VMSKEY : V0061129
2015-A-0122Microsoft Windows Kernel Elevation of Privilege Vulnerability (MS15-063)
Severity : Category II - VMSKEY : V0060961
2015-A-0048Multiple Vulnerabilities in Windows Kernel (MS15-025)
Severity : Category II - VMSKEY : V0058995
2014-A-0180Microsoft Windows Kerberos Privilege Escalation Vulnerability
Severity : Category I - VMSKEY : V0057571
2014-A-0171Multiple Vulnerabilities in Windows OLE
Severity : Category I - VMSKEY : V0057379
2014-A-0148Microsoft FAT32 Disk Partition Driver Privilege Escalation Vulnerability
Severity : Category I - VMSKEY : V0055429
2014-A-0095Microsoft Windows Journal Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0052951
2014-B-0093Microsoft Ancillary Function Driver Privilege Escalation Vulnerability
Severity : Category II - VMSKEY : V0052955
2013-A-0042Microsoft Windows Media Decompression Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0036827
2012-A-0196Microsoft Windows File Handling Component Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0035488
2012-B-0020Microsoft Color Control Panel Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0031354
2009-A-0097Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0021756
2009-A-0067Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0019882
2009-B-0033Multiple Vulnerabilities in Visual Studio Active Template Library
Severity : Category II - VMSKEY : V0019798
2008-A-0084Multiple Vulnerabilities in Microsoft XML Core Services
Severity : Category II - VMSKEY : V0017877

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2019-04-18Microsoft Windows TTF parsing counter overflow attempt
RuleID : 49483 - Type : FILE-OTHER - Revision : 1
2019-04-18Microsoft Windows TTF parsing counter overflow attempt
RuleID : 49482 - Type : FILE-OTHER - Revision : 1
2018-08-16Microsoft Windows OTF parsing memory corruption attempt
RuleID : 47220 - Type : FILE-OTHER - Revision : 1
2018-08-16Microsoft Windows OTF parsing memory corruption attempt
RuleID : 47219 - Type : FILE-OTHER - Revision : 1
2018-06-07Microsoft Windows clfs.sys out of bounds local privilege escalation attempt
RuleID : 46604 - Type : OS-WINDOWS - Revision : 1
Hide | Show 20 More...
DateDescription
2018-06-07Microsoft Windows clfs.sys out of bounds local privilege escalation attempt
RuleID : 46603 - Type : OS-WINDOWS - Revision : 1
2018-06-07Microsoft Win32k privilege escalation attempt
RuleID : 46565 - Type : OS-WINDOWS - Revision : 1
2018-06-07Microsoft Win32k privilege escalation attempt
RuleID : 46564 - Type : OS-WINDOWS - Revision : 1
2018-06-07Microsoft Win32k privilege escalation attempt
RuleID : 46563 - Type : OS-WINDOWS - Revision : 1
2018-06-07Microsoft Win32k privilege escalation attempt
RuleID : 46562 - Type : OS-WINDOWS - Revision : 1
2018-06-05Microsoft Edge eval heap overflow attempt
RuleID : 46508 - Type : BROWSER-IE - Revision : 1
2018-06-05Microsoft Edge eval heap overflow attempt
RuleID : 46507 - Type : BROWSER-IE - Revision : 1
2018-06-05Microsoft Edge eval heap overflow attempt
RuleID : 46506 - Type : BROWSER-IE - Revision : 1
2018-06-05Microsoft Edge eval heap overflow attempt
RuleID : 46505 - Type : BROWSER-IE - Revision : 1
2018-06-05Microsoft Windows TTF cmap integer overflow attempt
RuleID : 46504 - Type : OS-WINDOWS - Revision : 1
2018-06-05Microsoft Windows TTF cmap integer overflow attempt
RuleID : 46503 - Type : OS-WINDOWS - Revision : 1
2018-05-10Microsoft Internet Explorer JavaScript memory corruption attempt
RuleID : 46229 - Type : BROWSER-IE - Revision : 1
2018-05-10Microsoft Internet Explorer javascript memory corruption attempt
RuleID : 46228 - Type : BROWSER-IE - Revision : 1
2018-05-10Microsoft Edge out of bounds write attempt
RuleID : 46219 - Type : BROWSER-IE - Revision : 1
2018-05-10Microsoft Edge out of bounds write attempt
RuleID : 46218 - Type : BROWSER-IE - Revision : 1
2018-05-10Microsoft Internet Explorer Vbscript String out of bounds write
RuleID : 46199 - Type : BROWSER-IE - Revision : 1
2018-05-10Microsoft Internet Explorer Vbscript String out of bounds write
RuleID : 46198 - Type : BROWSER-IE - Revision : 1
2018-04-12Microsoft Internet Explorer VBScript remote code execution attempt
RuleID : 45888 - Type : BROWSER-IE - Revision : 1
2018-04-12Microsoft Internet Explorer VBScript remote code execution attempt
RuleID : 45887 - Type : BROWSER-IE - Revision : 1
2018-03-15Microsoft Windows HIDPARSE.sys memory corruption attempt
RuleID : 45657 - Type : OS-WINDOWS - Revision : 1

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-04-03Name : The remote mail server may be affected by multiple vulnerabilities.
File : exchange_ms10-024.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053578.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053579.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053580.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053581.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054517.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054518.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054519.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054520.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_dec_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_aug_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_jul_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_jun_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_nov_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_oct_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_sep_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048952.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048953.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048954.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048955.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048956.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048957.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048958.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048959.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_win2008.nasl - Type : ACT_GATHER_INFO