Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5091 CRITICAL 122 HIGH 3461 MEDIUM 1438 LOW 70
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • 商用ライセンス有り
  • Microsoft
Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
4941 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 53 1279 421 5
4942 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 94 2460 885 11
4943 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 103 2553 1010 15
4944 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 94 2178 911 50
4945 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
4946 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
4947 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
4948 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
4949 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
4941 -
7.5 		HIGH Integer overflow in the ReadWideString function in agentdpv.dll in Microsoft Agent on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code v… CWE-189
Numeric Errors 		CVE-2006-3445 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w… 		2026-04-23 09:35
2006-11-15 		Show GitHub Exploit DB Packet Storm
4942 -
9.0 		HIGH Unspecified vulnerability in the Server service in Microsoft Windows 2000 SP4, Server 2003 SP1 and earlier, and XP SP2 and earlier allows remote attackers to execute arbitrary code via a crafted pack… CWE-94
Code Injection 		CVE-2006-4696 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:r2:* 		2026-04-23 09:35
2006-10-11 		Show GitHub Exploit DB Packet Storm
4943 -
4.3 		MEDIUM Cross-site scripting (XSS) vulnerability in the Indexing Service in Microsoft Windows 2000, XP, and Server 2003, when the Encoding option is set to Auto Select, allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2006-0032 cpe:2.3:o:microsoft:windows_2003_server:web:sp1_beta_1
cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:… 		2019-04-30 23:27
2006-09-13 		Show GitHub Exploit DB Packet Storm
4944 -
7.5 		HIGH Heap-based buffer overflow in URLMON.DLL in Microsoft Internet Explorer 6 SP1 on Windows 2000 and XP SP1, with versions the MS06-042 patch before 20060912, allows remote attackers to cause a denial o… NVD-CWE-Other
CVE-2006-3873 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w… 		2024-02-14 10:17
2006-09-13 		Show GitHub Exploit DB Packet Storm
4945 -
7.5 		HIGH Microsoft Internet Explorer allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Windows 2000 ActiveX COM Objects incl… NVD-CWE-Other
CVE-2006-4495 cpe:2.3:o:microsoft:windows_2003_server:professional:sp4
cpe:2.3:o:microsoft:windows_2003_server:professional:sp3 		2018-10-18 06:37
2006-09-1 		Show GitHub Exploit DB Packet Storm
4946 -
2.6 		LOW Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted attackers to ca… NVD-CWE-Other
CVE-2006-4071 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:r2:* 		2018-10-18 06:33
2006-08-10 		Show GitHub Exploit DB Packet Storm
4947 -
10.0 		HIGH Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including anonymous users, to execute arbitrary code via a crafted RP… NVD-CWE-Other
CVE-2006-3439 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w… 		2018-10-13 06:40
2006-08-9 		Show GitHub Exploit DB Packet Storm
4948 -
10.0 		HIGH Buffer overflow in the Winsock API in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka "Winsock Hostname Vuln… NVD-CWE-Other
CVE-2006-3440 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w… 		2018-10-13 06:40
2006-08-9 		Show GitHub Exploit DB Packet Storm
4949 -
10.0 		HIGH Buffer overflow in the DNS Client service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted record response. NOTE: wh… NVD-CWE-Other
CVE-2006-3441 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w… 		2018-10-13 06:40
2006-08-9 		Show GitHub Exploit DB Packet Storm
4950 -
7.6 		HIGH Unspecified vulnerability in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 and 2003 SP1, allows remote attackers to execute arbitrary code via unspecified vectors involving unhandled except… NVD-CWE-noinfo
CVE-2006-3648 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:r2:* 		2018-10-13 06:40
2006-08-9 		Show GitHub Exploit DB Packet Storm