This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2009-04-15
Product Windows Xp Last view 2013-01-09
Version * Type Os
Update sp3  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:microsoft:windows_xp

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
9.3 2013-01-09 CVE-2013-0007

Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."

9.3 2013-01-09 CVE-2013-0006

Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."

10 2012-09-26 CVE-2012-2897

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT, as used by Google Chrome before 22.0.1229.79 and other programs, do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via a crafted TrueType font file, aka "Windows Font Parsing Vulnerability" or "TrueType Font Parsing Vulnerability."

9.3 2011-03-09 CVE-2011-0029

Untrusted search path vulnerability in the client in Microsoft Remote Desktop Connection 5.2, 6.0, 6.1, and 7.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Insecure Library Loading Vulnerability."

9.3 2010-08-27 CVE-2010-3147

Untrusted search path vulnerability in wab.exe 6.00.2900.5512 in Windows Address Book in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a Trojan horse wab32res.dll file in the current working directory, as demonstrated by a directory that contains a Windows Address Book (WAB), VCF (aka vCard), or P7C file, aka "Insecure Library Loading Vulnerability." NOTE: the codebase for this product may overlap the codebase for the product referenced in CVE-2010-3143.

9.3 2010-08-27 CVE-2010-3138

Untrusted search path vulnerability in the Indeo Codec in iac25_32.ax in Microsoft Windows XP SP3 allows local users to gain privileges via a Trojan horse iacenc.dll file in the current working directory, as demonstrated by access through BS.Player or Media Player Classic to a directory that contains a .avi, .mka, .ra, or .ram file, aka "Indeo Codec Insecure Library Loading Vulnerability." NOTE: some of these details are obtained from third party information.

9.3 2010-04-14 CVE-2010-0268

Unspecified vulnerability in the Windows Media Player ActiveX control in Windows Media Player (WMP) 9 on Microsoft Windows 2000 SP4 and XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted media content, aka "Media Player Remote Code Execution Vulnerability."

9.3 2010-03-31 CVE-2010-0807

Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."

9.3 2010-03-31 CVE-2010-0805

The Tabular Data Control (TDC) ActiveX control in Microsoft Internet Explorer 5.01 SP4, 6 on Windows XP SP2 and SP3, and 6 SP1 allows remote attackers to execute arbitrary code via a long URL (DataURL parameter) that triggers memory corruption in the CTDCCtl::SecurityCHeckDataURL function, aka "Memory Corruption Vulnerability."

4.3 2010-03-31 CVE-2010-0494

Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted HTML document in a situation where the client user drags one browser window across another browser window, aka "HTML Element Cross-Domain Vulnerability."

9.3 2010-03-31 CVE-2010-0492

Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."

9.3 2010-03-31 CVE-2010-0491

Use-after-free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 6 SP1 allows remote attackers to execute arbitrary code by changing unspecified properties of an HTML object that has an onreadystatechange event handler, aka "HTML Object Memory Corruption Vulnerability."

9.3 2010-03-31 CVE-2010-0490

Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability."

9.3 2010-03-31 CVE-2010-0489

Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condition Memory Corruption Vulnerability."

4.3 2010-03-31 CVE-2010-0488

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site, aka "Post Encoding Information Disclosure Vulnerability."

9.3 2010-03-31 CVE-2010-0267

Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability."

9.3 2010-03-10 CVE-2010-0806

Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, aka "Uninitialized Memory Corruption Vulnerability."

9.3 2010-03-10 CVE-2010-0265

Buffer overflow in Microsoft Windows Movie Maker 2.1, 2.6, and 6.0, and Microsoft Producer 2003, allows remote attackers to execute arbitrary code via a crafted project (.MSWMM) file, aka "Movie Maker and Producer Buffer Overflow Vulnerability."

7.6 2010-03-03 CVE-2010-0917

Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote attackers to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution when the F1 key is pressed, a different vulnerability than CVE-2010-0483.

7.6 2010-03-03 CVE-2010-0483

vbscript.dll in VBScript 5.1, 5.6, 5.7, and 5.8 in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, allows user-assisted remote attackers to execute arbitrary code by referencing a (1) local pathname, (2) UNC share pathname, or (3) WebDAV server with a crafted .hlp file in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution involving winhlp32.exe when the F1 key is pressed, aka "VBScript Help Keypress Vulnerability."

9.3 2010-02-04 CVE-2010-0555

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content type for files that are encountered after a redirection, aka the URLMON sniffing vulnerability, a variant of CVE-2009-1140 and related to CVE-2008-1448.

9.3 2010-01-22 CVE-2010-0027

The URL validation functionality in Microsoft Internet Explorer 5.01, 6, 6 SP1, 7 and 8, and the ShellExecute API function in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, does not properly process input parameters, which allows remote attackers to execute arbitrary local programs via a crafted URL, aka "URL Validation Vulnerability."

9.3 2010-01-21 CVE-2010-0379

Multiple unspecified vulnerabilities in the Macromedia Flash ActiveX control in Adobe Flash Player 6, as distributed in Microsoft Windows XP SP2 and SP3, might allow remote attackers to execute arbitrary code via unspecified vectors that are not related to the use-after-free "Movie Unloading Vulnerability" (CVE-2010-0378). NOTE: due to lack of details, it is not clear whether this overlaps any other CVE item.

9.3 2010-01-21 CVE-2010-0378

Use-after-free vulnerability in Adobe Flash Player 6.0.79, as distributed in Microsoft Windows XP SP2 and SP3, allows remote attackers to execute arbitrary code by unloading a Flash object that is currently being accessed by a script, leading to memory corruption, aka a "Movie Unloading Vulnerability."

9.3 2009-12-12 CVE-2009-4310

Stack-based buffer overflow in the Intel Indeo41 codec for Windows Media Player in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote attackers to execute arbitrary code via crafted compressed video data in an IV41 stream in a media file, leading to many loop iterations, as demonstrated by data in an AVI file.

CWE : Common Weakness Enumeration

%idName
51% (17) CWE-94 Failure to Control Generation of Code ('Code Injection')
15% (5) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (4) CWE-399 Resource Management Errors
6% (2) CWE-200 Information Exposure
6% (2) CWE-189 Numeric Errors
3% (1) CWE-362 Race Condition
3% (1) CWE-264 Permissions, Privileges, and Access Controls
3% (1) CWE-20 Improper Input Validation

SAINT Exploits

Description Link
Internet Explorer iepeers.dll use-after-free vulnerability More info here
Microsoft Windows Movie Maker IsValidWMToolsStream buffer overflow More info here
Internet Explorer WinINet credential reflection vulnerability More info here
Internet Explorer Tabular Data Control DataURL memory corruption More info here
Microsoft DirectX DirectShow QuickTime movie parsing vulnerability More info here
Microsoft Remote Desktop Connection Insecure Library Injection More info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
71014 Microsoft Windows Remote Desktop Client Path Subversion Arbitrary DLL Injecti...
67588 Microsoft Windows Indeo Filter Path Subversion Arbitrary DLL Injection Code E...
67553 Microsoft Windows Contacts Path Subversion Arbitrary DLL Injection Code Execu...
63765 Microsoft Windows Media Player ActiveX fourCC Compression Code Codec Retrieva...
63335 Microsoft IE Unspecified Uninitialized Memory Corruption
63334 Microsoft IE Post Encoding Information Disclosure
63333 Microsoft IE Unspecified Race Condition Memory Corruption
63332 Microsoft IE Object Handling Unspecified Memory Corruption (2010-0490)
63331 Microsoft IE HTML Object onreadystatechange Event Handler Memory Corruption
63330 Microsoft IE HTML Rendering Unspecified Memory Corruption
63329 Microsoft IE Tabular Data Control (TDC) ActiveX URL Handling CTDCCtl::Securit...
63328 Microsoft IE HTML Element Handling Cross-Domain Information Disclosure
63327 Microsoft IE CTimeAction Object TIME2 Handling Memory Corruption
62811 Microsoft Windows Movie Maker / Producer IsValidWMToolsStream() Function Proj...
62810 Microsoft IE iepeers.dll Use-After-Free Arbitrary Code Execution
62756 Microsoft Windows VBScript MsgBox() Function helpfile Argument Arbitrary Comm...
62632 Microsoft Windows VBScript MsgBox() Function HLP File Arbitrary Command Execu...
62245 Microsoft Windows Shell Handler ShellExecute API Crafted URL Arbitrary Comman...
62157 Microsoft IE text/html Content Type URLMON Sniffing Arbitrary File Access
61909 Microsoft IE Unspecified Crafted URL Handling Arbitrary Code Execution
61906 Adobe Flash Player on Windows ActiveX Unspecified Arbitrary Remote Code Execu...
61905 Adobe Flash Player on Windows Use-after-free Movie Unloading Memory Corruption
60856 Microsoft Windows Intel Indeo41 Codec IV41 Stream Video Decompression Overflow
60855 Microsoft Windows Intel Indeo41 Codec IV41 movi Record Handling Overflow
60839 Microsoft IE CAttrArray Object Circular Dereference Remote Code Execution

ExploitDB Exploits

id Description
16590 Internet Explorer DHTML Behaviors Use After Free
14886 MOAUB #4 - Movie Maker Remote Code Execution (MS10-016)
12032 Microsoft Internet Explorer Tabular Data Control ActiveX Remote Code Execution
11683 Microsoft Internet Explorer iepeers.dll Use-After-Free Exploit (meta)
9893 Microsoft Internet Explorer 5,6,7 memory corruption PoC

OpenVAS Exploits

id Description
2012-11-14 Name : Microsoft Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (...
File : nvt/secpod_ms12-075.nasl
2012-09-28 Name : Google Chrome Windows Kernel Memory Corruption Vulnerability
File : nvt/gb_google_chrome_mem_crptn_vuln_win.nasl
2012-02-15 Name : MS Windows Indeo Codec Remote Code Execution Vulnerability (2661637)
File : nvt/secpod_ms12-014.nasl
2011-03-09 Name : Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062)
File : nvt/secpod_ms11-017.nasl
2010-12-15 Name : Microsoft Windows Address Book Remote Code Execution Vulnerability (2423089)
File : nvt/secpod_ms10-096.nasl
2010-04-14 Name : Microsoft Windows Media Player Could Allow Remote Code Execution (979402)
File : nvt/secpod_ms10-027.nasl
2010-04-14 Name : Microsoft VBScript Scripting Engine Remote Code Execution Vulnerability (980232)
File : nvt/secpod_ms10-022.nasl
2010-04-01 Name : Microsoft Internet Explorer Multiple Vulnerabilities (980182)
File : nvt/secpod_ms10-018.nasl
2010-03-10 Name : MS Internet Explorer Remote Code Execution Vulnerability (981374)
File : nvt/gb_ms_ie_remote_code_exe_vuln_981374.nasl
2010-03-10 Name : MS Internet Explorer 'VBScript' Remote Code Execution Vulnerability
File : nvt/gb_ms_ie_vbscript_remote_code_exec_vuln.nasl
2010-03-10 Name : Microsoft Windows Movie Maker Could Allow Remote Code Execution Vulnerability...
File : nvt/secpod_ms10-016.nasl
2010-02-10 Name : Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerabili...
File : nvt/secpod_ms10-007.nasl
2010-01-22 Name : Microsoft Internet Explorer Multiple Vulnerabilities (978207)
File : nvt/secpod_ms10-002.nasl
2010-01-13 Name : Adobe Flash Player Remote Code Execution Vulnerability (WinXP)
File : nvt/gb_adobe_flash_player_remote_code_exec_vuln_winxp.nasl
2009-12-17 Name : Microsoft Windows Indeo Codec Multiple Vulnerabilities
File : nvt/gb_ms_indeo_codec_mult_vuln.nasl
2009-12-09 Name : WordPad and Office Text Converters Remote Code Execution Vulnerability (975539)
File : nvt/secpod_ms09-073.nasl
2009-12-04 Name : MS Internet Explorer 'Style' Object Remote Code Execution Vulnerability
File : nvt/gb_ms_ie_style_object_remote_code_exec_vuln.nasl
2009-10-15 Name : Microsoft .NET Common Language Runtime Code Execution Vulnerability (974378)
File : nvt/secpod_ms09-061.nasl
2009-10-14 Name : Microsoft Internet Explorer Multiple Code Execution Vulnerabilities (974455)
File : nvt/secpod_ms09-054.nasl
2009-10-14 Name : Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (9...
File : nvt/secpod_ms09-051.nasl
2009-07-15 Name : Microsoft DirectShow Remote Code Execution Vulnerability (961373)
File : nvt/secpod_ms09-028.nasl
2009-06-01 Name : Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution
File : nvt/secpod_ms_directx_code_exec_vuln.nasl
2009-04-15 Name : Microsoft Internet Explorer Remote Code Execution Vulnerability (963027)
File : nvt/secpod_ms09-014.nasl
2009-04-15 Name : Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)
File : nvt/secpod_ms09-013.nasl
2008-12-12 Name : WordPad and Office Text Converter Memory Corruption Vulnerability (960477)
File : nvt/secpod_ms_wordpad_mult_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2013-A-0004 Multiple Vulnerabilities in Microsoft XML Core Services
Severity: Category I - VMSKEY: V0036444
2012-B-0019 Microsoft Indeo Codec Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0031353
2011-B-0033 Microsoft Remote Desktop Connection Client Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0026091
2010-A-0173 Microsoft Windows Address Book Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0025845
2010-A-0052 Microsoft Windows Media Player Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0024002
2010-A-0029 Microsoft Windows Shell Handler Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0022683
2009-B-0069 Multiple Vulnerabilities in Indeo Codec affecting Microsoft Windows
Severity: Category II - VMSKEY: V0022163
2009-A-0128 Microsoft WordPad and Office Text Converters Remote Code Execution Vulnerability
Severity: Category II - VMSKEY: V0021551
2009-A-0091 Multiple Vulnerabilities in Microsoft Windows Media Runtime
Severity: Category II - VMSKEY: V0021744
2009-A-0034 Microsoft Windows HTTP Services Remote Code Execution Vulnerability
Severity: Category I - VMSKEY: V0018756
2009-A-0032 Multiple Vulnerabilities in WordPad and Office Text Converters
Severity: Category I - VMSKEY: V0018752

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2019-10-10 Microsoft Windows WordPad and Office text converter integer overflow attempt
RuleID : 51473 - Type : FILE-OFFICE - Revision : 1
2019-10-10 Microsoft Windows WordPad and Office text converter integer overflow attempt
RuleID : 51472 - Type : FILE-OFFICE - Revision : 1
2019-04-18 Microsoft Windows TTF parsing counter overflow attempt
RuleID : 49483 - Type : FILE-OTHER - Revision : 1
2019-04-18 Microsoft Windows TTF parsing counter overflow attempt
RuleID : 49482 - Type : FILE-OTHER - Revision : 1
2018-02-27 Microsoft Windows Movie Maker project file heap buffer overflow attempt
RuleID : 45554 - Type : FILE-MULTIMEDIA - Revision : 1
2018-02-27 Microsoft Windows Movie Maker project file heap buffer overflow attempt
RuleID : 45553 - Type : FILE-MULTIMEDIA - Revision : 1
2017-10-03 Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44218 - Type : OS-WINDOWS - Revision : 1
2017-10-03 Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44217 - Type : OS-WINDOWS - Revision : 1
2017-10-03 Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44216 - Type : OS-WINDOWS - Revision : 1
2017-05-31 Microsoft Internet Explorer uninitialized or deleted object access attempt
RuleID : 42389 - Type : BROWSER-IE - Revision : 2
2016-11-08 Microsoft Windows Media Runtime malformed ASF codec memory corruption attempt
RuleID : 40354 - Type : OS-WINDOWS - Revision : 2
2016-04-09 Microsoft Windows Media Player ActiveX unknown compression algorithm use afte...
RuleID : 38144 - Type : BROWSER-PLUGINS - Revision : 1
2016-04-09 Microsoft Windows Media Player ActiveX unknown compression algorithm use afte...
RuleID : 38143 - Type : BROWSER-PLUGINS - Revision : 1
2016-04-09 Microsoft Windows Media Player ActiveX unknown compression algorithm use afte...
RuleID : 38142 - Type : BROWSER-PLUGINS - Revision : 1
2016-04-09 Microsoft Windows Media Player ActiveX unknown compression algorithm use afte...
RuleID : 38141 - Type : BROWSER-PLUGINS - Revision : 1
2016-03-15 Microsoft Windows Movie Maker project file heap buffer overflow attempt
RuleID : 37663 - Type : FILE-MULTIMEDIA - Revision : 1
2016-03-14 Microsoft Internet Explorer data stream header remote code execution attempt
RuleID : 36791 - Type : BROWSER-IE - Revision : 2
2014-11-16 Microsoft Internet Explorer outerHTML against incomplete element heap corrupt...
RuleID : 31504 - Type : BROWSER-IE - Revision : 3
2014-06-19 Microsoft Office Word WordPerfect converter buffer overflow attempt
RuleID : 31032 - Type : FILE-OFFICE - Revision : 2
2014-06-19 Microsoft Office Word WordPerfect converter buffer overflow attempt
RuleID : 31031 - Type : FILE-OFFICE - Revision : 2
2014-01-10 overly large XML file MSXML heap overflow attempt
RuleID : 28286 - Type : FILE-OTHER - Revision : 3
2014-01-10 Microsoft Internet Explorer innerHTML against incomplete element heap corrupt...
RuleID : 27222 - Type : BROWSER-IE - Revision : 4
2014-01-10 Microsoft Internet Explorer userdata behavior memory corruption attempt
RuleID : 25986 - Type : BROWSER-IE - Revision : 7
2014-01-10 Microsoft Internet Explorer userdata behavior memory corruption attempt
RuleID : 25985 - Type : BROWSER-IE - Revision : 9
2014-01-10 Microsoft Internet Explorer userdata behavior memory corruption attempt
RuleID : 25984 - Type : BROWSER-IE - Revision : 9

Nessus® Vulnerability Scanner

id Description
2013-01-09 Name: Arbitrary code can be executed on the remote host through Microsoft XML Core ...
File: smb_nt_ms13-002.nasl - Type: ACT_GATHER_INFO
2012-11-14 Name: The remote Windows host is affected by remote code execution vulnerabilities.
File: smb_nt_ms12-075.nasl - Type: ACT_GATHER_INFO
2012-09-26 Name: The remote host contains a web browser that is affected by multiple vulnerabi...
File: google_chrome_22_0_1229_79.nasl - Type: ACT_GATHER_INFO
2012-02-14 Name: Arbitrary code can be executed on the remote Windows host through the Indeo c...
File: smb_nt_ms12-014.nasl - Type: ACT_GATHER_INFO
2011-03-08 Name: It is possible to execute arbitrary code on the remote host through the Remot...
File: smb_nt_ms11-017.nasl - Type: ACT_GATHER_INFO
2010-12-15 Name: Arbitrary code can be executed on the remote host through Windows Address Book.
File: smb_nt_ms10-096.nasl - Type: ACT_GATHER_INFO
2010-04-13 Name: The remote Windows host has an ActiveX control that is affected by a code exe...
File: smb_nt_ms10-027.nasl - Type: ACT_GATHER_INFO
2010-04-13 Name: Arbitrary code can be executed on the remote host through the installed VBScr...
File: smb_nt_ms10-022.nasl - Type: ACT_GATHER_INFO
2010-03-30 Name: Arbitrary code can be executed on the remote host through a web browser.
File: smb_nt_ms10-018.nasl - Type: ACT_GATHER_INFO
2010-03-09 Name: Arbitrary code can be executed on the remote host through Windows Movie Maker.
File: smb_nt_ms10-016.nasl - Type: ACT_GATHER_INFO
2010-02-09 Name: An API function on the remote host has a code execution vulnerability.
File: smb_nt_ms10-007.nasl - Type: ACT_GATHER_INFO
2009-12-09 Name: The remote host is missing a security update that mitigates multiple vulnerab...
File: smb_kb_955759.nasl - Type: ACT_GATHER_INFO
2009-12-08 Name: Arbitrary code can be executed on the remote host through opening a Microsoft...
File: smb_nt_ms09-073.nasl - Type: ACT_GATHER_INFO
2009-12-08 Name: Arbitrary code can be executed on the remote host through a web browser.
File: smb_nt_ms09-072.nasl - Type: ACT_GATHER_INFO
2009-10-14 Name: The Microsoft .NET Common Language Runtime is affected by multiple vulnerabil...
File: smb_nt_ms09-061.nasl - Type: ACT_GATHER_INFO
2009-10-13 Name: Arbitrary code can be executed on the remote host through a web browser.
File: smb_nt_ms09-054.nasl - Type: ACT_GATHER_INFO
2009-10-13 Name: Arbitrary code can be executed on the remote host through opening a Windows M...
File: smb_nt_ms09-051.nasl - Type: ACT_GATHER_INFO
2009-07-14 Name: It is possible to execute arbitrary code on the remote Windows host using Dir...
File: smb_nt_ms09-028.nasl - Type: ACT_GATHER_INFO
2009-04-15 Name: Arbitrary code can be executed on the remote host through a web browser.
File: smb_nt_ms09-014.nasl - Type: ACT_GATHER_INFO
2009-04-15 Name: The remote host contains an API that is affected by multiple vulnerabilities.
File: smb_nt_ms09-013.nasl - Type: ACT_GATHER_INFO
2009-04-15 Name: It is possible to execute arbitrary code on the remote Windows host using a t...
File: smb_nt_ms09-010.nasl - Type: ACT_GATHER_INFO
2009-01-21 Name: Arbitrary code can be executed on the remote host through a web browser.
File: smb_nt_ms10-002.nasl - Type: ACT_GATHER_INFO