Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Windows Server Number Of NVD 5229 CRITICAL 126 HIGH 3568 MEDIUM 1464 LOW 71
URL https://www.microsoft.com/
Explanation Server products offered by Microsoft.

For business, developer, and desktop operating system products, 10 years of support at the supported Service Pack level (with a minimum of 5 years of mainstream support, followed by a minimum of 5 years of extended support).
You may need to deploy the latest updates to be eligible for support.
For some products, the support organization may be less than 10 years.

For consumer and multimedia products, five years of mainstream support at the supported Service Pack level.

The above text is excerpted from Microsoft's Fixed Lifecycle Policy.
Tag
  • 商用ライセンス有り
  • Microsoft

Add Information URL
No Type Name URL
1 https://support.microsoft.com//lifecycle/search
2 https://www.microsoft.com/ja-jp/cloud-platform/windows-server
3 https://support.microsoft.com/ja-jp/hub/4095338/microsoft-lifecycle-policy
4 https://docs.microsoft.com/ja-jp/windows-server/get-started/windows-server-release-info

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
5201 Windows Server 2022 21H2 Nov. 2, 2021 Nov. 2, 2021 Oct. 13, 2026 Oct. 14, 2031 60 1398 449 6
5202 Windows Server 2019 1809 Oct. 2, 2018 Nov. 13, 2018 Jan. 9, 2024 Jan. 9, 2029 98 2567 911 12
5203 Windows Server 2016 20H2 Oct. 20, 2020 Oct. 15, 2016 Jan. 11, 2022 Jan. 12, 2027 107 2641 1033 16
5204 Windows Server 2012 Oct. 30, 2012 Oct. 30, 2012 Oct. 9, 2018 Oct. 10, 2023 98 2256 929 51
5205 Windows Server 2008 R2( Service Pack 1適用) Feb. 22, 2011 Jan. 14, 2020 0 0 0 0
5206 Windows Server 2008(Service Pack 2適用) April 29, 2009 Jan. 14, 2020 0 0 0 0
5207 Microsoft Windows Server 2003(Service Pack 2適用) May 28, 2003 July 13, 2010 July 14, 2015 0 128 53 15
5208 Microsoft Windows Storage Server 2003 May 5, 2003 Oct. 11, 2011 Oct. 9, 2016 0 128 53 15
5209 Microsoft Windows 2000(Service Pack 4適用) March 31, 2000 June 30, 2005 July 13, 2010 2 40 19 0
5210 Windows Server 2025 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
5201 -
5.0
MEDIUM Buffer overflow in the COM Internet Services and in the RPC over HTTP Proxy components for Microsoft Windows NT Server 4.0, NT 4.0 Terminal Server Edition, 2000, XP, and Server 2003 allows remote att… NVD-CWE-Other
CVE-2003-0807 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2018-10-13 06:33
2004-06-1
Show GitHub Exploit DB Packet Storm
5202 7.5
7.5
HIGH
Network
The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or ex… CWE-476
 NULL Pointer Dereference
CVE-2004-0119 cpe:2.3:o:microsoft:windows_2000:-:* 2024-02-16 06:44
2004-06-1
Show GitHub Exploit DB Packet Storm
5203 -
7.5
HIGH Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote atta… NVD-CWE-Other
CVE-2003-0818 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2004-03-3
Show GitHub Exploit DB Packet Storm
5204 -
9.3
HIGH The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers… CWE-20
 Improper Input Validation 
CVE-2003-0825 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2004-03-3
Show GitHub Exploit DB Packet Storm
5205 -
7.2
HIGH Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox c… NVD-CWE-Other
CVE-2003-0659 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2003-11-17
Show GitHub Exploit DB Packet Storm
5206 -
7.5
HIGH The Authenticode capability in Microsoft Windows NT through Server 2003 does not prompt the user to download and install ActiveX controls when the system is low on memory, which could allow remote at… NVD-CWE-Other
CVE-2003-0660 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2003-11-17
Show GitHub Exploit DB Packet Storm
5207 -
7.5
HIGH Stack-based buffer overflow in the PCHealth system in the Help and Support Center function in Windows XP and Windows Server 2003 allows remote attackers to execute arbitrary code via a long query in … NVD-CWE-Other
CVE-2003-0711 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2003-11-17
Show GitHub Exploit DB Packet Storm
5208 -
7.5
HIGH The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers to execute arbitrary code via a buffer overflow attack. NVD-CWE-Other
CVE-2003-0717 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2003-11-17
Show GitHub Exploit DB Packet Storm
5209 -
5.0
MEDIUM Directory traversal vulnerability in the "Shell Folders" capability in Microsoft Windows Server 2003 allows remote attackers to read arbitrary files via .. (dot dot) sequences in a "shell:" link. NVD-CWE-Other
CVE-2003-0839 cpe:2.3:o:microsoft:windows_2003_server:r2:* 2016-10-18 11:37
2003-11-17
Show GitHub Exploit DB Packet Storm
5210 -
5.0
MEDIUM The NetBT Name Service (NBNS) for NetBIOS in Windows NT 4.0, 2000, XP, and Server 2003 may include random memory in a response to a NBNS query, which could allow remote attackers to obtain sensitive … NVD-CWE-Other
CVE-2003-0661 cpe:2.3:o:microsoft:windows_2003_server:web:*
cpe:2.3:o:microsoft:windows_2003_server:standard:*
cpe:2.3:o:micros…
2019-04-30 23:27
2003-10-20
Show GitHub Exploit DB Packet Storm