Microsoft Corporation

Short Name: Microsoft
Previous Names: [None Entered]
URL: http://www..microsoft.com/ [visit link]
Email: [None Entered]
Security URL: http://www.microsoft.com/security/ [visit link]
Security Email: securemicrosoft.com
Knowledge Base: http://support.microsoft.com/default.aspx?scid=fh;EN-US;KBHOWTO [visit link]
Notes: Contact web form: http://support.microsoft.com/common/international.aspx?rdpath=fh;en-us;cntactms Security web form: https://www.microsoft.com/technet/security/bulletin/alertus.aspx.

Vulnerabilities by Vendor Product

Microsoft Corporation

Microsoft Corporation
Skype for Android Watch-list
3.2.0.6673
OSVDB ID: 94794 Skype for Android Dropped Call Screenlock Bypass
Small Business Server Watch-list
2000
OSVDB ID: 17312 Microsoft ISA Server NetBIOS Predefined Filter Privilege Escalation
OSVDB ID: 17342 Microsoft ISA Server Basic Credentials Exposure
2003 Premium Edition
OSVDB ID: 17312 Microsoft ISA Server NetBIOS Predefined Filter Privilege Escalation
OSVDB ID: 17342 Microsoft ISA Server Basic Credentials Exposure
2003 SP1
OSVDB ID: 40069 Microsoft Windows TCP/IP ICMP RDP Packet Handling Remote DoS
2003 R2
OSVDB ID: 40069 Microsoft Windows TCP/IP ICMP RDP Packet Handling Remote DoS
2003 R2 SP2
OSVDB ID: 40069 Microsoft Windows TCP/IP ICMP RDP Packet Handling Remote DoS
2003 Standard
2003 Premium
2000 SP1
2000 Standard
SQL Server 2000 Desktop Engine Watch-list
SP4
Skype Watch-list
5.8.0.156
OSVDB ID: 82103 Skype Multiple Chat Field Malformed Data Handling Remote DoS
5.5.0.2340
OSVDB ID: 82103 Skype Multiple Chat Field Malformed Data Handling Remote DoS
2.2 Beta
OSVDB ID: 82103 Skype Multiple Chat Field Malformed Data Handling Remote DoS
5.6.59.10
OSVDB ID: 84896 Skype on Windows Malformed File Transfer Remote Memory Corruption DoS
6.2.0.106
OSVDB ID: 91459 Skype Click to Call Service (c2c_service.exe) Directory Permission Weakness Local Privilege Escalation
6.2.0.106
OSVDB ID: 91974 Skype Multiple Unspecified Issues
SMS Watch-list
2.50.2726.0
OSVDB ID: 7951 Microsoft SMS Remote Control Client DoS
Small Business Server 2000 Watch-list
Standard Edition
SQL Server 2000 Analysis Services Watch-list
SP4
Snapshot Viewer Watch-list
11
OSVDB ID: 79116 Microsoft Snapshot Viewer Path Subversion Arbitrary DLL Injection Code Execution
SQL Server 2000 Watch-list
SP4
SP4
Analysis Services SP4
Itanium-based Edition SP 4
Reporting Services SP2
SQL Server Watch-list
2000
OSVDB ID: 878 Microsoft SQL Resolution Service Keep-Alive Function DoS
OSVDB ID: 10144 Microsoft SQL Server raiserror Function Overflow
OSVDB ID: 10166 Microsoft SQL Server raiserror Function DoS
OSVDB ID: 10145 Microsoft SQL Server formatmessage Function Overflow
OSVDB ID: 10181 Microsoft SQL Server formatmessage Function DoS
OSVDB ID: 10146 Microsoft SQL Server xp_sprintf Function Overflow
OSVDB ID: 10183 Microsoft SQL Server xp_sprintf Function DoS
OSVDB ID: 10148 Microsoft SQL Server xp_enumresultset Function Overflow
OSVDB ID: 10150 Microsoft SQL Server xp_updatecolvbm Function Overflow
OSVDB ID: 10152 Microsoft SQL Server xp_printstatements Function Overflow
OSVDB ID: 10153 Microsoft SQL Server xp_proxiedmetadata Function Overflow
OSVDB ID: 10154 Microsoft SQL Server xp_SetSQLSecurity Function Overflow
OSVDB ID: 2299 Microsoft SQL Server Named Pipe Handling Request Remote DoS
OSVDB ID: 10147 Microsoft SQL Server xp_displayparamstmt Function Overflow
OSVDB ID: 10149 Microsoft SQL Server xp_showcolv Function Remote Overflow
OSVDB ID: 10151 Microsoft SQL Server xp_peekqueue Function Remote Overflow
OSVDB ID: 4577 Microsoft SQL Resolution Service 0x08 Byte Long String Overflow
OSVDB ID: 10132 Microsoft SQL Server Authentication Function Remote Overflow
OSVDB ID: 5347 Microsoft SQL Server SQLXML ISAPI Extension Remote Overflow
OSVDB ID: 10160 Multiple RPC Servers Malformed Input Remote DoS
OSVDB ID: 4578 Microsoft SQL Resolution Service Monitor Thread Registry Key Name Overflow
7
OSVDB ID: 2299 Microsoft SQL Server Named Pipe Handling Request Remote DoS
OSVDB ID: 10379 Microsoft SQL Server Large Query DoS
7.0
OSVDB ID: 10144 Microsoft SQL Server raiserror Function Overflow
OSVDB ID: 10166 Microsoft SQL Server raiserror Function DoS
OSVDB ID: 10145 Microsoft SQL Server formatmessage Function Overflow
OSVDB ID: 10181 Microsoft SQL Server formatmessage Function DoS
OSVDB ID: 10146 Microsoft SQL Server xp_sprintf Function Overflow
OSVDB ID: 10183 Microsoft SQL Server xp_sprintf Function DoS
OSVDB ID: 10148 Microsoft SQL Server xp_enumresultset Function Overflow
OSVDB ID: 10150 Microsoft SQL Server xp_updatecolvbm Function Overflow
OSVDB ID: 10152 Microsoft SQL Server xp_printstatements Function Overflow
OSVDB ID: 10153 Microsoft SQL Server xp_proxiedmetadata Function Overflow
OSVDB ID: 10154 Microsoft SQL Server xp_SetSQLSecurity Function Overflow
OSVDB ID: 10147 Microsoft SQL Server xp_displayparamstmt Function Overflow
OSVDB ID: 10149 Microsoft SQL Server xp_showcolv Function Remote Overflow
OSVDB ID: 10151 Microsoft SQL Server xp_peekqueue Function Remote Overflow
OSVDB ID: 10132 Microsoft SQL Server Authentication Function Remote Overflow
OSVDB ID: 10160 Multiple RPC Servers Malformed Input Remote DoS
7.0 SP1
OSVDB ID: 10379 Microsoft SQL Server Large Query DoS
7.0 SP2
OSVDB ID: 10379 Microsoft SQL Server Large Query DoS
7.0 SP3
OSVDB ID: 10379 Microsoft SQL Server Large Query DoS
2000 Standard Edition
OSVDB ID: 15757 Microsoft SQL Server sa Account Default Null Password
7.0 Standard Edition
OSVDB ID: 15757 Microsoft SQL Server sa Account Default Null Password
2000 Reporting Services SP2
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
OSVDB ID: 47965 Microsoft Multiple Products GDI+ VML Gradient Size Handling Overflow
2005 SP2
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
OSVDB ID: 47965 Microsoft Multiple Products GDI+ VML Gradient Size Handling Overflow
2005
OSVDB ID: 81112 Microsoft SQL Server RESTORE DATABASE Command SQL Injection
2008
OSVDB ID: 81112 Microsoft SQL Server RESTORE DATABASE Command SQL Injection
2008 R2
OSVDB ID: 86622 Microsoft SQL Server Local Authentication Bypass
OSVDB ID: 81112 Microsoft SQL Server RESTORE DATABASE Command SQL Injection
Unspecified
OSVDB ID: 90206 Ruby on Rails Applications Common Patterns Input Handling Database Typecasting Conflict Incorrect Record Matching Weakness
2000 SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2000 Analysis Services SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2005 Express Edition with Advanced Services SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2005 32-bit Systems SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2005 x64-based Systems SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2005 Itanium-based Systems SP4
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 32-bit Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 32-bit Systems SP3
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 x64-based Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 x64-based Systems SP3
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 Itanium-based Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 Itanium-based Systems SP3
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 R2 32-bit Systems
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 R2 32-bit Systems SP1
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 R2 32-bit Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 R2 x64-based Systems
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 R2 x64-based Systems SP1
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 R2 x64-based Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 R2 Itanium-based Systems
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2008 R2 Itanium-based Systems SP1
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008 R2 Itanium-based Systems SP2
OSVDB ID: 84593 Microsoft Multiple Product Windows Common Controls TabStrip ActiveX (MSCOMCTL.OCX) Document Handling Arbitrary Code Execution
2005 SP4
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2008 SP2
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2008 SP3
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2008 R2 for 32-bit Systems
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2008 R2 for x64-based Systems
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2008 R2 for Itanium-based Systems
OSVDB ID: 81125 Microsoft Multiple Product MSCOMCTL.OCX Multiple Control Memory Corruption
2000 Itanium-based Edition SP4
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
2005 x64 Edition SP2
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
2000 Desktop Engine SP4
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
2005 Express Edition SP2
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
2005 Express Edition with Advanced Services SP2
OSVDB ID: 50589 Microsoft SQL Server 2000 sp_replwritetovarbin() Stored Procedure Overflow
2008 Itanium-based Systems SP2
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2012 32-bit Systems
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2012 x64-based Systems
OSVDB ID: 86057 Microsoft SQL Server Report Manager Unspecified XSS
2008
OSVDB ID: 86622 Microsoft SQL Server Local Authentication Bypass
2005
OSVDB ID: 86622 Microsoft SQL Server Local Authentication Bypass



The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use