This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/o:microsoft:windows_server_2008:r2::x64 |
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2010-02-10 |
| Product | Windows Server 2008 | Last view | 2013-02-13 |
| Version | r2 | Type | Os |
| Edition | x64 | ||
| Language | |||
| Update | |||
| CPE Product | cpe:/o:microsoft:windows_server_2008 | ||
Activity : Yearly
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 7.8 | 2013-02-13 | CVE-2013-0075 | Network | Low | None Requ... | |
| 7.2 | 2013-01-09 | CVE-2013-0008 | Local | Low | None Requ... | |
| 9.3 | 2012-12-11 | CVE-2012-2556 | Network | Medium | None Requ... | |
| 7.2 | 2012-07-10 | CVE-2012-1893 | Local | Low | None Requ... | |
| 7.2 | 2012-07-10 | CVE-2012-1890 | Local | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2012-07-10 | CVE-2012-1870 | Network | Medium | None Requ... | |
| 7.2 | 2012-06-12 | CVE-2012-0217 | Local | Low | None Requ... | |
| 9.3 | 2012-06-12 | CVE-2012-0173 | Network | Medium | None Requ... | |
| 7.2 | 2012-05-08 | CVE-2012-1848 | Local | Low | None Requ... | |
| 7.2 | 2012-05-08 | CVE-2012-0180 | Local | Low | None Requ... | |
| 7.2 | 2012-05-08 | CVE-2012-0178 | Local | Low | None Requ... | |
| 9.3 | 2012-04-10 | CVE-2012-0151 | Network | Medium | None Requ... | |
| 7.2 | 2012-03-13 | CVE-2012-0157 | Local | Low | None Requ... | |
| 4.3 | 2012-03-13 | CVE-2012-0156 | Network | Medium | None Requ... | |
| 4.3 | 2012-03-13 | CVE-2012-0152 | Network | Medium | None Requ... | |
| 5 | 2012-03-13 | CVE-2012-0006 | Network | Low | None Requ... | |
| 9.3 | 2012-03-13 | CVE-2012-0002 | Network | Medium | None Requ... | |
| 7.2 | 2012-02-14 | CVE-2012-0154 | Local | Low | None Requ... | |
| 9.3 | 2012-02-14 | CVE-2012-0150 | Network | Medium | None Requ... | |
| 7.2 | 2012-02-14 | CVE-2012-0148 | Local | Low | None Requ... | |
| 9.3 | 2012-01-10 | CVE-2012-0013 | Network | Medium | None Requ... | |
| 9.3 | 2012-01-10 | CVE-2012-0004 | Network | Medium | None Requ... | |
| 9.3 | 2012-01-10 | CVE-2012-0003 | Network | Medium | None Requ... | |
| 9.3 | 2012-01-10 | CVE-2012-0001 | Network | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 35% (36) | CWE-399 | Resource Management Errors |
| 24% (25) | CWE-20 | Improper Input Validation |
| 12% (13) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 8% (9) | CWE-264 | Permissions, Privileges, and Access Controls |
| 5% (6) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| % | id | Name |
|---|---|---|
| 4% (5) | CWE-189 | Numeric Errors |
| 3% (4) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 1% (2) | CWE-287 | Improper Authentication |
| 1% (2) | CWE-200 | Information Exposure |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:7195 | Remote code execution vulnerability in Canonical Display Driver |
| oval:org.mitre.oval:def:8064 | DirectShow Heap Overflow Vulnerability |
| oval:org.mitre.oval:def:8424 | Microsoft Data Analyzer ActiveX Control Vulnerability |
| oval:org.mitre.oval:def:6948 | Win32k Window Creation Vulnerability |
| oval:org.mitre.oval:def:7492 | DEPRECATED: Microsoft Internet Explorer 8 Developer Tools Vulnerability |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:12534 | Microsoft Internet Explorer 8 Developer Tools Vulnerability |
| oval:org.mitre.oval:def:7072 | OpenType CFF Font Driver Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:7120 | LSASS Heap Overflow Vulnerability |
| oval:org.mitre.oval:def:7283 | Win32k TrueType Font Parsing Vulnerability |
| oval:org.mitre.oval:def:6881 | Embedded OpenType Font Integer Overflow Vulnerability |
| oval:org.mitre.oval:def:11564 | Windows Shell Vulnerability |
| oval:org.mitre.oval:def:7358 | Print Spooler Service Impersonation Vulnerability |
| oval:org.mitre.oval:def:11963 | Netlogon RPC Null dereference DOS Vulnerability |
| oval:org.mitre.oval:def:7272 | Comctl32 Heap Overflow Vulnerability |
| oval:org.mitre.oval:def:6789 | Permissions on New Cluster Disks Vulnerability |
| oval:org.mitre.oval:def:6806 | TLSv1 Denial of Service Vulnerability |
| oval:org.mitre.oval:def:12304 | Task Scheduler Vulnerability |
| oval:org.mitre.oval:def:12184 | Win32k Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:12359 | Hyper-V VMBus Vulnerability |
| oval:org.mitre.oval:def:12323 | Consent UI Impersonation Vulnerability |
| oval:org.mitre.oval:def:12163 | BranchCache Insecure Library Loading Vulnerability |
| oval:org.mitre.oval:def:12390 | Fax Cover Page Editor Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:12162 | Driver Improper Interaction with Windows Kernel Vulnerability |
| oval:org.mitre.oval:def:12480 | Remote Desktop Insecure Library Loading Vulnerability |
| oval:org.mitre.oval:def:12313 | Scripting Engines Information Disclosure Vulnerability |
Open Source Vulnerability Database (OSVDB)
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 78211 | Microsoft Windows Line21 DirectShow Filter Media File Handling Remote Code Ex... |
| 78210 | Microsoft Windows Multimedia Library (winmm.dll) MIDI File Handling Remote Co... |
| 78209 | Microsoft Windows Ntdll.dll Structured Exception Handling Tables Loading Safe... |
| 78207 | Microsoft Windows Embedded ClickOnce Application Office File Handling Remote ... |
| 77667 | Microsoft Windows Active Directory Query Parsing Remote Overflow |
| id | Description |
|---|---|
| 77662 | Microsoft Windows CSRSS Device Event Message Parsing Local Privilege Escalation |
| 76902 | Microsoft Windows Active Directory LDAPS CRL Handling Weakness Authentication... |
| 76901 | Microsoft Windows Mail / Windows Meeting Space Path Subversion Arbitrary DLL ... |
| 76900 | Microsoft Windows Malformed TrueType Font Parsing DoS |
| 76899 | Microsoft Windows TCP/IP Reference Counter Crafted UDP Packet Stream Remote O... |
| 76231 | Microsoft Windows Active Accessibility Path Subversion Arbitrary DLL Injectio... |
| 76221 | Microsoft Windows win32k.sys Driver Use-after-free Driver Object Handling Arb... |
| 76220 | Microsoft Windows win32k.sys Driver .fon Font File Handling Overflow |
| 76219 | Microsoft Windows win32k.sys Driver Type Translation TrueType Font File Handl... |
| 76218 | Microsoft Windows win32k.sys Driver NULL Dereference Unspecified Arbitrary Co... |
| 75444 | Microsoft Windows WINS Loopback Interface Crafted Packet Local Privilege Esca... |
| 75382 | Microsoft Windows Shell Extensions Path Subversion Arbitrary DLL Injection Co... |
| 74483 | Microsoft Windows TCP/IP Stack (Tcpip.sys) QoS URL Request Parsing Remote DoS |
| 74482 | Microsoft Windows TCP/IP Stack (Tcpip.sys) ICMP Message Parsing Remote DoS |
| 74408 | Microsoft Windows Data Access Tracing Component Path Subversion Arbitrary DLL... |
| 74407 | Microsoft Windows Kernel File Metadata Handling Remote DoS |
| 74406 | Microsoft Windows Remote Desktop Web Access Logon Page Unspecified XSS |
| 74401 | Microsoft Windows Client/Server Run-time Subsystem (CSRSS) Inter-Process Devi... |
| 74400 | Microsoft Windows DNS Service Non-Existent Domain Query Parsing Remote DoS |
| 74399 | Microsoft Windows DNS Service NAPTR Query Parsing Overflow |
ExploitDB Exploits
| id | Description |
|---|---|
| 24485 | MS13-005 HWND_BROADCAST PoC |
| 19037 | MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability |
| 18426 | MS12-004 midiOutPlayNextPolyEvent Heap Overflow |
| 18372 | Microsoft Windows Assembly Execution Vulnerability MS12-005 |
| 18024 | MS11-077 Win32k Null Pointer De-reference Vulnerability POC |
| id | Description |
|---|---|
| 17981 | MS11-064 TCP/IP Stack Denial of Service |
| 17978 | MS11-077 .fon Kernel-Mode Buffer Overrun PoC |
| 17831 | MS WINS ECommEndDlg Input Validation Error |
| 17401 | MS HyperV Persistent DoS Vulnerability |
| 15758 | Windows Win32k Pointer Dereferencement PoC (MS10-098) |
| 14608 | Microsoft Windows CreateWindow Function Callback Vulnerability (MS10-048) |
Metasploit Exploits
| id | Description |
|---|---|
| 2010-09-13 | Windows Escalate Task Scheduler XML Privilege Escalation |
| 2010-09-13 | Windows Escalate Task Scheduler XML Privilege Escalation |
| 2012-03-16 | MS12-020 Microsoft Remote Desktop Use-After-Free DoS |
| 0000-00-00 | MS12-020 Microsoft Remote Desktop Checker |
| 2012-01-10 | MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability |
| id | Description |
|---|---|
| 2012-01-10 | MS12-004 midiOutPlayNextPolyEvent Heap Overflow |
| 2010-07-16 | Microsoft Windows Shell LNK Code Execution |
| 2010-09-14 | Microsoft Print Spooler Service Impersonation Vulnerability |
