Software Detail

Software Informaton Top

Operating Systems

Software Detail

Windows Server

Number Of NVD

5091

CRITICAL

122

HIGH

3461

MEDIUM

1438

LOW

URL	https://www.microsoft.com/
Explanation	Server products offered by Microsoft. For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support). You may need to deploy the latest updates to be eligible for support. For some products, the support organization may be less than 10 years. For consumer and multimedia products, five years of mainstream support at the supported Service Pack level. The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag	商用ライセンス有り Microsoft

Add Information URL

No	Type	Name	URL
1			https://support.microsoft.com//lifecycle/search
2			https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3			https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4			https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
4861	Windows Server 2022	21H2	Nov. 2, 2021	Nov. 2, 2021	Oct. 13, 2026		Oct. 14, 2031	53	1279	421	5
4862	Windows Server 2019	1809	Oct. 2, 2018	Nov. 13, 2018	Jan. 9, 2024		Jan. 9, 2029	94	2460	885	11
4863	Windows Server 2016	20H2	Oct. 20, 2020	Oct. 15, 2016	Jan. 11, 2022		Jan. 12, 2027	103	2553	1010	15
4864	Windows Server 2012		Oct. 30, 2012	Oct. 30, 2012	Oct. 9, 2018		Oct. 10, 2023	94	2178	911	50
4865	Windows Server 2008 R2（ Service Pack 1適用）			Feb. 22, 2011		Jan. 14, 2020		0	0	0	0
4866	Windows Server 2008（Service Pack 2適用）			April 29, 2009		Jan. 14, 2020		0	0	0	0
4867	Microsoft Windows Server 2003（Service Pack 2適用）			May 28, 2003	July 13, 2010		July 14, 2015	0	128	53	15
4868	Microsoft Windows Storage Server 2003			May 5, 2003	Oct. 11, 2011		Oct. 9, 2016	0	128	53	15
4869	Microsoft Windows 2000（Service Pack 4適用）			March 31, 2000	June 30, 2005		July 13, 2010	2	40	19	0

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
4861	- 8.5	HIGH	Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server 2008; allows remote attackers to execute arbitrary code via an M…	CWE-94 Code Injection	CVE-2009-2499	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4862	- 9.3	HIGH	Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format (ASF) files, which allows remote att…	CWE-94 Code Injection	CVE-2009-2498	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4863	- 7.8	HIGH	Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to cause a denial of service (TCP outage) via a series of TC…	NVD-CWE-Other	CVE-2009-1926	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4864	- 10.0	HIGH	The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary cod…	CWE-94 Code Injection	CVE-2009-1925	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4865	- 9.3	HIGH	The JScript scripting engine 5.1, 5.6, 5.7, and 5.8 in JScript.dll in Microsoft Windows, as used in Internet Explorer, does not properly load decoded scripts into memory before execution, which allow…	CWE-94 Code Injection	CVE-2009-1920	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4866	- 9.3	HIGH	Heap-based buffer overflow in the Wireless LAN AutoConfig Service (aka Wlansvc) in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1132	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-09-9	Show	GitHub Exploit DB Packet Storm

4867	9.8 10.0	CRITICAL Network	The Active Template Library (ATL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary c…	CWE-94 Code Injection	CVE-2009-2494	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-08-13	Show	GitHub Exploit DB Packet Storm

4868	- 10.0	HIGH	The Telnet service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote Telnet servers to execute arbitrary code on a c…	CWE-255 Credentials Management	CVE-2009-1930	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-08-13	Show	GitHub Exploit DB Packet Storm

4869	- 9.3	HIGH	Heap-based buffer overflow in the Microsoft Terminal Services Client ActiveX control running RDP 6.1 on Windows XP SP2, Vista SP1 or SP2, or Server 2008 Gold or SP2; or 5.2 or 6.1 on Windows XP SP3; …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1929	cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:windows_server_2008:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-08-13	Show	GitHub Exploit DB Packet Storm

4870	- 9.3	HIGH	Integer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 allows remote WINS replication partners to execute arbitrary code via crafted data structures in …	CWE-189 Numeric Errors	CVE-2009-1924	cpe:2.3:o:microsoft:windows_2003_server:-:sp2 cpe:2.3:o:microsoft:windows_2003_server:-:sp2 cpe:2.3:o:microsoft:w…	2026-04-23 09:35 2009-08-13	Show	GitHub Exploit DB Packet Storm