NVD Vulnerability Information Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
343401 5.1 MEDIUM
microsoft windows_explorer
windows_2000
windows_2003_server
windows_xp 		Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attac… NVD-CWE-Other
CVE-2005-2117 2018-10-13 06:37 2005-10-22 Show GitHub Exploit DB Packet Storm
343402 5.0 MEDIUM
microsoft windows_2000
windows_2003_server
windows_xp 		The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers… NVD-CWE-Other
CVE-2005-2119 2018-10-13 06:37 2005-10-12 Show GitHub Exploit DB Packet Storm
343403 6.5 MEDIUM
microsoft windows_2000
windows_xp 		Stack-based buffer overflow in the Plug and Play (PnP) service (UMPNPMGR.DLL) in Microsoft Windows 2000 SP4, and XP SP1 and SP2, allows remote or local authenticated attackers to execute arbitrary co… NVD-CWE-Other
CVE-2005-2120 2018-10-13 06:37 2005-10-13 Show GitHub Exploit DB Packet Storm
343404 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		Multiple integer overflows in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows M… NVD-CWE-Other
CVE-2005-2123 2018-10-13 06:37 2005-11-30 Show GitHub Exploit DB Packet Storm
343405 7.6 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		Unspecified vulnerability in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, related to "An unchecked buffer" and possibly buffer overflows, allows… NVD-CWE-Other
CVE-2005-2124 2018-10-13 06:37 2005-11-30 Show GitHub Exploit DB Packet Storm
343406 2.6 LOW
microsoft ie
windows_2000
windows_2003_server
windows_xp 		The FTP client in Windows XP SP1 and Server 2003, and Internet Explorer 6 SP1 on Windows 2000 SP4, when "Enable Folder View for FTP Sites" is enabled and the user manually initiates a file transfer, … NVD-CWE-Other
CVE-2005-2126 2018-10-13 06:37 2005-10-22 Show GitHub Exploit DB Packet Storm
343407 5.0 MEDIUM
microsoft windows_media_player QUARTZ.DLL in Microsoft Windows Media Player 9 allows remote attackers to write a null byte to arbitrary memory via an AVI file with a crafted strn element with a modified length value. NVD-CWE-Other
CVE-2005-2128 2018-10-13 06:37 2005-10-12 Show GitHub Exploit DB Packet Storm
343408 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_98
windows_98se
windows_me
windows_xp 		Buffer overflow in the Telephony Application Programming Interface (TAPI) for Microsoft Windows 98, Windows 98 SE, Windows ME, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to el… NVD-CWE-Other
CVE-2005-0058 2018-10-13 06:36 2005-08-10 Show GitHub Exploit DB Packet Storm
343409 2.1 LOW
microsoft windows_2000
windows_2003_server
windows_xp 		Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Ma… NVD-CWE-Other
CVE-2005-0550 2018-10-13 06:36 2005-05-2 Show GitHub Exploit DB Packet Storm
343410 10.0 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		Stack-based buffer overflow in WINSRV.DLL in the Client Server Runtime System (CSRSS) process of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain pri… NVD-CWE-Other
CVE-2005-0551 2018-10-13 06:36 2005-05-2 Show GitHub Exploit DB Packet Storm
343411 5.1 MEDIUM
microsoft word Buffer overflow in Microsoft Word 2000, Word 2002, and Word 2003 allows remote attackers to execute arbitrary code via a crafted document. NVD-CWE-Other
CVE-2005-0558 2018-10-13 06:36 2005-05-2 Show GitHub Exploit DB Packet Storm
343412 7.5 HIGH
microsoft msn_messenger GIF file validation error in MSN Messenger 6.2 allows remote attackers in a user's contact list to execute arbitrary code via a GIF image with an improper height and width. NVD-CWE-Other
CVE-2005-0562 2018-10-13 06:36 2005-04-12 Show GitHub Exploit DB Packet Storm
343413 7.5 HIGH
microsoft word Stack-based buffer overflow in Microsoft Word 2000 and Word 2002, and Microsoft Works Suites 2000 through 2004, might allow remote attackers to execute arbitrary code via a .doc file with long font i… NVD-CWE-Other
CVE-2005-0564 2018-10-13 06:36 2005-07-12 Show GitHub Exploit DB Packet Storm
343414 5.0 MEDIUM
microsoft windows_2003_server The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND E… NVD-CWE-Other
CVE-2005-1205 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343415 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		Buffer overflow in the Server Message Block (SMB) functionality for Microsoft Windows 2000, XP SP1 and SP2, and Server 2003 and SP1 allows remote attackers to execute arbitrary code via unknown vecto… NVD-CWE-Other
CVE-2005-1206 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343416 7.2 HIGH
microsoft windows_2003_server
windows_xp 		Buffer overflow in the Web Client service in Microsoft Windows XP and Windows Server 2003 allows remote authenticated users to execute arbitrary code via a crafted WebDAV request containing special p… NVD-CWE-Other
CVE-2005-1207 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343417 10.0 HIGH
microsoft windows_2000
windows_2003_server
windows_98
windows_xp 		Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a la… NVD-CWE-Other
CVE-2005-1208 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343418 7.5 HIGH
microsoft outlook_express Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a… NVD-CWE-Other
CVE-2005-1213 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343419 7.5 HIGH
microsoft isa_server Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers. NVD-CWE-Other
CVE-2005-1215 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343420 7.5 HIGH
microsoft isa_server Microsoft ISA Server 2000 allows remote attackers to connect to services utilizing the NetBIOS protocol via a NetBIOS connection with an ISA Server that uses the NetBIOS (all) predefined packet filte… NVD-CWE-Other
CVE-2005-1216 2018-10-13 06:36 2005-06-14 Show GitHub Exploit DB Packet Storm
343421 7.5 HIGH
microsoft image_color_management Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags. NVD-CWE-Other
CVE-2005-1219 2018-10-13 06:36 2005-07-12 Show GitHub Exploit DB Packet Storm
343422 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		COM+ in Microsoft Windows does not properly "create and use memory structures," which allows local users or remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1978 2018-10-13 06:36 2005-10-12 Show GitHub Exploit DB Packet Storm
343423 5.0 MEDIUM
microsoft windows_2000
windows_2003_server
windows_xp 		Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service exception and exit) via an "unexpected protocol command during the reconnecti… NVD-CWE-Other
CVE-2005-1979 2018-10-13 06:36 2005-10-12 Show GitHub Exploit DB Packet Storm
343424 5.0 MEDIUM
microsoft windows_2000
windows_2003_server
windows_xp 		Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service hang) via a crafted Transaction Internet Protocol (TIP) message that causes D… NVD-CWE-Other
CVE-2005-1980 2018-10-13 06:36 2005-10-12 Show GitHub Exploit DB Packet Storm
343425 10.0 HIGH
microsoft windows_2000
windows_xp 		Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and loc… NVD-CWE-Other
CVE-2005-1983 2018-10-13 06:36 2005-08-10 Show GitHub Exploit DB Packet Storm
343426 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message. NVD-CWE-Other
CVE-2005-1984 2018-10-13 06:36 2005-08-10 Show GitHub Exploit DB Packet Storm
343427 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_xp 		The Client Service for NetWare (CSNW) on Microsoft Windows 2000 SP4, XP SP1 and Sp2, and Server 2003 SP1 and earlier, allows remote attackers to execute arbitrary code due to an "unchecked buffer" wh… NVD-CWE-Other
CVE-2005-1985 2018-10-13 06:36 2005-10-13 Show GitHub Exploit DB Packet Storm
343428 4.3 MEDIUM
microsoft sharepoint_portal_server
sharepoint_team_services 		Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote attackers to inject arbitrary HTML and web s… NVD-CWE-Other
CVE-2005-0049 2018-10-13 06:35 2005-05-2 Show GitHub Exploit DB Packet Storm
343429 7.5 HIGH
microsoft windows_xp The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which … NVD-CWE-Other
CVE-2005-0051 2018-10-13 06:35 2005-05-2 Show GitHub Exploit DB Packet Storm
343430 5.0 MEDIUM
microsoft ie Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote attackers to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phish… NVD-CWE-Other
CVE-2004-0844 2018-10-13 06:35 2004-11-3 Show GitHub Exploit DB Packet Storm
343431 7.5 HIGH
microsoft excel
office 		Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via a malicious file containing certain parameters that are not pr… NVD-CWE-Other
CVE-2004-0846 2018-10-13 06:35 2004-11-3 Show GitHub Exploit DB Packet Storm
343432 9.8 CRITICAL
Network 		microsoft asp.net The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a (1) "\" (backslash… CWE-22
Path Traversal 		CVE-2004-0847 2018-10-13 06:35 2004-11-3 Show GitHub Exploit DB Packet Storm
343433 7.5 HIGH
microsoft office
powerpoint
project
visio
word
works 		Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2)… NVD-CWE-Other
CVE-2004-0848 2018-10-13 06:35 2005-02-8 Show GitHub Exploit DB Packet Storm
343434 7.5 HIGH
microsoft isa_server
proxy_server
windows_2003_server 		Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Inte… NVD-CWE-Other
CVE-2004-0892 2018-10-13 06:35 2005-01-27 Show GitHub Exploit DB Packet Storm
343435 10.0 HIGH
microsoft windows_2003_server
windows_xp 		The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote attackers to execute arbitrary code via a buffer overflow attack. NVD-CWE-Other
CVE-2004-0897 2018-10-13 06:35 2005-01-11 Show GitHub Exploit DB Packet Storm
343436 5.0 MEDIUM
microsoft windows_nt The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition, with DHCP logging enabled, does not properly validate the length of certain messages, which allows remote atta… NVD-CWE-Other
CVE-2004-0899 2018-10-13 06:35 2005-01-10 Show GitHub Exploit DB Packet Storm
343437 10.0 HIGH
microsoft windows_nt The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages, which allows remote attackers to execute arbitrary c… NVD-CWE-Other
CVE-2004-0900 2018-10-13 06:35 2005-01-10 Show GitHub Exploit DB Packet Storm
343438 10.0 HIGH
microsoft word Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary cod… NVD-CWE-Other
CVE-2004-0963 2018-10-13 06:35 2005-02-9 Show GitHub Exploit DB Packet Storm
343439 5.1 MEDIUM
microsoft windows_2000
windows_2003_server
windows_nt
windows_xp 		Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, whic… NVD-CWE-Other
CVE-2004-1049 2018-10-13 06:35 2004-12-31 Show GitHub Exploit DB Packet Storm
343440 7.5 HIGH
microsoft windows_media_player Windows Media Player 9 allows remote attackers to execute arbitrary code via a PNG file containing large (1) width or (2) height values, aka the "PNG Processing Vulnerability." NVD-CWE-Other
CVE-2004-1244 2018-10-13 06:35 2004-02-8 Show GitHub Exploit DB Packet Storm
343441 10.0 HIGH
microsoft windows_xp Microsoft Windows XP Explorer allows local users to execute arbitrary code via a system folder with a Desktop.ini file containing a .ShellClassInfo specifier with a CLSID value that is associated wit… NVD-CWE-Other
CVE-2004-2289 2018-10-13 06:35 2004-12-31 Show GitHub Exploit DB Packet Storm
343442 5.0 MEDIUM
microsoft msn_messenger Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-2004-0122 2018-10-13 06:34 2004-04-15 Show GitHub Exploit DB Packet Storm
343443 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_98
windows_98se
windows_me
windows_nt
windows_xp 		Double free vulnerability in the ASN.1 library as used in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service and possibly execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2004-0123 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm
343444 2.6 LOW
microsoft windows_2000
windows_2003_server
windows_nt
windows_xp 		The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka t… NVD-CWE-Other
CVE-2004-0124 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm
343445 7.5 HIGH
microsoft jet Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. NVD-CWE-Other
CVE-2004-0197 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm
343446 5.1 MEDIUM
microsoft windows_2003_server
windows_xp 		Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code, as demonstrated using certain… NVD-CWE-Other
CVE-2004-0199 2018-10-13 06:34 2004-06-14 Show GitHub Exploit DB Packet Storm
343447 7.5 HIGH
bea
borland_software
businessobjects
microsoft 		weblogic_server
j_builder
crystal_enterprise
crystal_enterprise_java_sdk
crystal_enterprise_ras
crystal_reports
business_solutions_crm
outlook
visual_studio_.net 		Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business C… NVD-CWE-Other
CVE-2004-0204 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
343448 7.2 HIGH
avaya
microsoft 		ip600_media_servers
internet_information_server
definity_one_media_server
s8100
modular_messaging_message_storage_server 		Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function. NVD-CWE-Other
CVE-2004-0205 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
343449 7.5 HIGH
microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or loca… NVD-CWE-Other
CVE-2004-0206 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
343450 2.1 LOW
microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		"Shatter" style vulnerability in the Window Management application programming interface (API) for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local… NVD-CWE-Other
CVE-2004-0207 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm