Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5229 CRITICAL 126 HIGH 3568 MEDIUM 1464 LOW 71
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • 商用ライセンス有り
  • Microsoft

Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
5151 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 60 1398 449 6
5152 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 98 2567 911 12
5153 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 107 2641 1033 16
5154 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 98 2256 929 51
5155 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
5156 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
5157 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
5158 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
5159 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
5160 Windows Server 2025 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
5151 -
7.2
HIGH Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows attackers to execute arbitrary code, aka the "COM Structured St… NVD-CWE-Other
CVE-2005-0047 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5152 -
10.0
HIGH The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remo… CWE-20
 Improper Input Validation 
CVE-2005-0050 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5153 -
7.5
HIGH The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibl… NVD-CWE-Other
CVE-2005-0057 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5154 -
7.2
HIGH Buffer overflow in the font processing component of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application. NVD-CWE-Other
CVE-2005-0060 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5155 -
7.2
HIGH The kernel of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via certain access requests. NVD-CWE-Other
CVE-2005-0061 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5156 -
7.5
HIGH The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID s… NVD-CWE-Other
CVE-2005-0063 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5157 -
2.1
LOW Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Ma… NVD-CWE-Other
CVE-2005-0550 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2018-10-13 06:36
2005-05-2
Show GitHub Exploit DB Packet Storm
5158 -
10.0
HIGH Stack-based buffer overflow in WINSRV.DLL in the Client Server Runtime System (CSRSS) process of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain pri… NVD-CWE-Other
CVE-2005-0551 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2018-10-13 06:36
2005-05-2
Show GitHub Exploit DB Packet Storm
5159 -
5.0
MEDIUM The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the correct sequence number but the wrong Acknowledgement n… NVD-CWE-Other
CVE-2005-1184 cpe:2.3:o:microsoft:windows_2003_server:web:sp1
cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft…
2019-04-30 23:27
2005-05-2
Show GitHub Exploit DB Packet Storm
5160 -
7.5
HIGH Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the "Drag-and-Drop Vulnerability." NVD-CWE-Other
CVE-2005-0053 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2021-07-23 21:55
2005-05-2
Show GitHub Exploit DB Packet Storm