Software Detail

Software Informaton Top

Operating Systems

Software Detail

Windows Server

Number Of NVD

5091

CRITICAL

122

HIGH

3461

MEDIUM

1438

LOW

URL	https://www.microsoft.com/
Explanation	Server products offered by Microsoft. For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support). You may need to deploy the latest updates to be eligible for support. For some products, the support organization may be less than 10 years. For consumer and multimedia products, five years of mainstream support at the supported Service Pack level. The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag	商用ライセンス有り Microsoft

Add Information URL

No	Type	Name	URL
1			https://support.microsoft.com//lifecycle/search
2			https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3			https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4			https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
4331	Windows Server 2022	21H2	Nov. 2, 2021	Nov. 2, 2021	Oct. 13, 2026		Oct. 14, 2031	53	1279	421	5
4332	Windows Server 2019	1809	Oct. 2, 2018	Nov. 13, 2018	Jan. 9, 2024		Jan. 9, 2029	94	2460	885	11
4333	Windows Server 2016	20H2	Oct. 20, 2020	Oct. 15, 2016	Jan. 11, 2022		Jan. 12, 2027	103	2553	1010	15
4334	Windows Server 2012		Oct. 30, 2012	Oct. 30, 2012	Oct. 9, 2018		Oct. 10, 2023	94	2178	911	50
4335	Windows Server 2008 R2（ Service Pack 1適用）			Feb. 22, 2011		Jan. 14, 2020		0	0	0	0
4336	Windows Server 2008（Service Pack 2適用）			April 29, 2009		Jan. 14, 2020		0	0	0	0
4337	Microsoft Windows Server 2003（Service Pack 2適用）			May 28, 2003	July 13, 2010		July 14, 2015	0	128	53	15
4338	Microsoft Windows Storage Server 2003			May 5, 2003	Oct. 11, 2011		Oct. 9, 2016	0	128	53	15
4339	Microsoft Windows 2000（Service Pack 4適用）			March 31, 2000	June 30, 2005		July 13, 2010	2	40	19	0

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
4331	7.8 7.2	HIGH Local	The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0051	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4332	5.3 5.0	MEDIUM Network	Network Policy Server (NPS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 misparses username queries, which allows remote attackers to cause a denial of service (RADIUS …	CWE-20 Improper Input Validation	CVE-2016-0050	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4333	6.2 2.1	MEDIUM Local	Kerberos in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 does not properly validate passw…	CWE-255 Credentials Management	CVE-2016-0049	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4334	7.8 7.2	HIGH Local	The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0048	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4335	7.8 9.3	HIGH Local	Windows Reader in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote attackers to execute arbitrary code via a crafted Reader file, aka "Microsoft Windows Reader Vul…	CWE-20 Improper Input Validation	CVE-2016-0046	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:*	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4336	7.5 5.0	HIGH Network	Sync Framework in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows remote attackers to cause a denial of service (SyncShareSvc service outage) via crafted "change batch" data,…	CWE-20 Improper Input Validation	CVE-2016-0044	cpe:2.3:o:microsoft:windows_server_2012:r2:*	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4337	7.8 7.2	HIGH Local	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle DLL loading, which…	NVD-CWE-Other	CVE-2016-0042	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4338	7.8 7.2	HIGH Local	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 10 and 11…	NVD-CWE-Other	CVE-2016-0041	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2008:r2:sp1	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4339	7.8 9.3	HIGH Local	Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 allows remote attackers t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-0038	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:-:* cpe:2.3:o:microsoft:wind…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm

4340	7.5 5.0	HIGH Network	The forms-based authentication implementation in Active Directory Federation Services (ADFS) 3.0 in Microsoft Windows Server 2012 R2 allows remote attackers to cause a denial of service (daemon outag…	CWE-20 Improper Input Validation	CVE-2016-0037	cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:windows_server_2012:r2:* cpe:2.3:o:microsoft:win…	2024-11-21 11:40 2016-02-10	Show	GitHub Exploit DB Packet Storm