Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5229 CRITICAL 126 HIGH 3568 MEDIUM 1464 LOW 71
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • 商用ライセンス有り
  • Microsoft

Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
5111 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 60 1398 449 6
5112 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 98 2567 911 12
5113 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 107 2641 1033 16
5114 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 98 2256 929 51
5115 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
5116 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
5117 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
5118 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
5119 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
5120 Windows Server 2025 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
5111 -
7.5
HIGH The 802.11 wireless client in certain operating systems including Windows 2000, Windows XP, and Windows Server 2003 does not warn the user when (1) it establishes an association with a station in ad … NVD-CWE-Other
CVE-2006-0376 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2018-10-20 00:44
2006-01-23
Show GitHub Exploit DB Packet Storm
5112 -
9.3
HIGH Heap-based buffer overflow in T2EMBED.DLL in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1, Windows 98, and Windows ME allows remote attackers to execute arbitrary code via an… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2006-0010 cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft…
2019-04-30 23:27
2006-01-11
Show GitHub Exploit DB Packet Storm
5113 -
9.3
HIGH An unspecified Microsoft WMF parsing application, as used in Internet Explorer 5.01 SP4 on Windows 2000 SP4, and 5.5 SP2 on Windows Millennium, and possibly other versions, allows attackers to cause … CWE-189
Numeric Errors
CVE-2006-0020 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*
2018-10-13 06:38
2006-01-11
Show GitHub Exploit DB Packet Storm
5114 -
7.5
HIGH Microsoft Windows Graphics Rendering Engine (GRE) allows remote attackers to corrupt memory and cause a denial of service (crash) via a WMF file containing (1) ExtCreateRegion or (2) ExtEscape functi… CWE-399
 Resource Management Errors
CVE-2006-0143 cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft…
2019-04-30 23:27
2006-01-10
Show GitHub Exploit DB Packet Storm
5115 -
5.0
MEDIUM Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service (client cras… NVD-CWE-Other
CVE-2005-4717 cpe:2.3:o:microsoft:windows_2003_server:sp1:* 2021-07-23 21:55
2005-12-31
Show GitHub Exploit DB Packet Storm
5116 -
7.5
HIGH The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC… CWE-20
 Improper Input Validation 
CVE-2005-4560 cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft…
2018-10-20 00:41
2005-12-29
Show GitHub Exploit DB Packet Storm
5117 -
7.8
HIGH mshtml.dll in Microsoft Windows XP, Server 2003, and Internet Explorer 6.0 SP1 allows attackers to cause a denial of service (access violation) by causing mshtml.dll to process button-focus events at… NVD-CWE-Other
CVE-2005-4269 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2008-09-6 05:56
2005-12-16
Show GitHub Exploit DB Packet Storm
5118 -
4.9
MEDIUM NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain argument… NVD-CWE-Other
CVE-2005-3981 cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft…
2024-08-8 09:15
2005-12-4
Show GitHub Exploit DB Packet Storm
5119 -
7.8
HIGH The SynAttackProtect protection in Microsoft Windows 2003 before SP1 and Windows 2000 before SP4 with Update Roll-up uses a hash of predictable data, which allows remote attackers to cause a denial o… NVD-CWE-Other
CVE-2005-3945 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-12-1
Show GitHub Exploit DB Packet Storm
5120 -
7.5
HIGH Multiple integer overflows in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows M… NVD-CWE-Other
CVE-2005-2123 cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*
cpe:2.3:o:microsoft:w…
2018-10-13 06:37
2005-11-30
Show GitHub Exploit DB Packet Storm