Ver la versión completa : Vulnerabilidades de windows xp
Hola muchamos los molesto para haber si me pueden decir cuales son las mejores vulnerabilidades de winxp_Professional para explotar.
Gracias.....
2005-04-07: Microsoft April Advance Notification Unspecified Security Vulnerabilities
2005-04-01: Microsoft Windows UNC Path Handling Unspecified Buffer Overflow Vulnerability
2005-03-30: Microsoft Windows User32.DLL ANI File Header Handling Stack-Based Buffer Overflow Vulnerability
2005-03-30: Microsoft Windows LoadImage API Function Integer Overflow Vulnerability
2005-03-30: Microsoft Windows ANI File Denial of Service Vulnerability
2005-03-23: Microsoft Windows XP TSShutdn.exe Remote Denial of Service Vulnerability
2005-03-22: Microsoft Windows Local Denial Of Service Vulnerability
2005-03-12: Multiple Vendor loopback (land.c) Denial of Service Vulnerability
2005-03-09: Microsoft Windows Server Message Block Handlers Remote Buffer Overflow Vulnerability
2005-03-08: Microsoft Windows Hyperlink Object Library Buffer Overflow Vulnerability
2005-02-16: Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
2005-02-10: LibPNG Graphics Library Multiple Remote Vulnerabilities
2005-02-10: Microsoft Windows Named Pipe Remote Information Disclosure Vulnerability
2005-02-08: Microsoft Internet Explorer Implicit Drag and Drop File Installation Vulnerability
2005-02-08: Microsoft Internet Explorer Method Caching Mouse Click Event Hijacking Vulnerability
2005-02-08: Microsoft Windows DHTML Edit Control Script Injection Vulnerability
2005-02-08: Microsoft Internet Explorer Valid File Drag and Drop Embedded Code Vulnerability
2005-02-08: Microsoft Windows COM Structured Storage Local Privilege Escalation Vulnerability
2005-02-08: Microsoft OLE Remote Buffer Overflow Vulnerability
2005-02-03: Microsoft Multiple Unspecified Security Vulnerabilities
2005-01-21: Microsoft Windows NetDDE Remote Buffer Overflow Vulnerability
2005-01-18: Microsoft GDI+ Library JPEG Segment Length Integer Underflow Vulnerability
2005-01-11: Microsoft Windows Indexing Service Buffer Overflow Vulnerability
2005-01-11: Microsoft Windows LSASS Connection Validation Privilege Escalation Vulnerability
2005-01-11: Microsoft Windows Kernel Unchecked LPC Buffer Privilege Escalation Vulnerability
2005-01-06: Microsoft Multiple Unspecified Security Vulnerabilities
2004-12-23: Microsoft Windows winhlp32 Phrase Heap Overflow Vulnerability
2004-12-23: Microsoft Windows winhlp32 Phrase Integer Overflow Vulnerability
2004-12-20: Microsoft Windows XP Firewall ACL Bypass Vulnerability
2004-12-15: Hilgraeve HyperTerminal Session Data Buffer Overflow Vulnerability
2004-12-14: Microsoft Word for Windows 6.0 Converter Font Conversion Buffer Overflow Vulnerability
2004-12-14: Microsoft Word for Windows 6.0 Converter Table Conversion Buffer Overflow Vulnerability
2004-12-09: Microsoft Windows Multiple Unspecified Vulnerabilities
2004-11-28: Microsoft Internet Explorer Drag and Drop Vulnerability
2004-11-23: Microsoft RPCSS DCERPC DCOM Object Activation Packet Length Heap Corruption Vulnerability
2004-11-19: Microsoft Windows Compressed (zipped) Folder Buffer Overflow Vulnerability
2004-11-09: Microsoft Windows DDEShare Buffer Overflow Vulnerability
2004-11-02: Microsoft XML Parser Remote Denial of Service Vulnerability
2004-10-28: Multiple Vendor Content Filtering Bypass Vulnerabilities
2004-10-26: Microsoft Windows Program Group Converter Filename Local Buffer Overrun Vulnerability
2004-10-26: Microsoft Windows WMF/EMF Image Format Rendering Remote Buffer Overflow Vulnerability
2004-10-26: Microsoft Windows Kernel Virtual DOS Machine Privilege Escalation Vulnerability
2004-10-26: Microsoft Window Management API Local Privilege Escalation Vulnerability
2004-10-26: Microsoft Windows Shell Long Share Name Buffer Overrun Vulnerability
2004-10-25: Multiple Vendor TCP Packet Fragmentation Handling Denial Of Service Vulnerability
2004-10-22: Microsoft Windows XP WAV File Handler Denial Of Service Vulnerability
2004-10-13: Microsoft Windows XP Weak Default Configuration Vulnerability
2004-09-27: Microsoft GDI+ Library Malformed JPEG Handling Unspecified Denial of Service Vulnerability
2004-09-16: Microsoft Windows XP Explorer.EXE TIFF Image Denial of Service Vulnerability
2004-08-24: Microsoft NTP Time Synchronization Spoof Weakness
2004-08-24: Microsoft Windows XP Self-Executing Folder Vulnerability
2004-08-24: Microsoft Windows XP Explorer Self-Executing Folder Vulnerability
2004-08-24: Microsoft Windows Message Queuing Service Heap Overflow Vulnerability
2004-08-17: Microsoft Windows XP SP2 Released - Multiple Vulnerabilities Fixed
2004-08-12: Microsoft Windows Internet Connection Firewall Filter Bypass Vulnerability
2004-08-12: Microsoft Windows LSASS Buffer Overrun Vulnerability
2004-08-10: Microsoft Windows 2000/XP CRL File Failed Integrity Check Denial Of Service Vulnerability
2004-07-31: Microsoft Windows Task Scheduler Remote Buffer Overflow Vulnerability
2004-07-16: Microsoft Windows Shell CLSID File Extension Misrepresentation Vulnerability
2004-07-16: Microsoft Windows HTML Help Heap Overflow Vulnerability
2004-07-14: Microsoft Windows showHelp CHM File Execution Weakness
2004-07-08: Microsoft Windows Window Message Subsystem Design Error Vulnerability
2004-06-15: Microsoft Windows H.323 Remote Buffer Overflow Vulnerability
2004-06-15: Microsoft ASN.1 Library Double Free Memory Corruption Vulnerability
2004-06-15: Microsoft Windows WMF/EMF Image Formats Remote Buffer Overflow Vulnerability
2004-06-15: Microsoft Windows Management Local Privilege Escalation Vulnerability
2004-06-15: Microsoft Windows Logon Process Remote Buffer Overflow Vulnerability
2004-06-08: Microsoft DirectX DirectPlay Remote Malformed Packet Denial Of Service Vulnerability
2004-05-20: Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability
2004-05-17: Microsoft UPnP NOTIFY Buffer Overflow Vulnerability
2004-05-11: Microsoft Windows HSC DVD Driver Upgrade Code Execution Vulnerability
2004-05-11: Microsoft Jet Database Engine Remote Code Execution Vulnerability
2004-04-21: Microsoft Windows Object Identity Network Communication Vulnerability
2004-04-21: Microsoft Windows RPCSS Service Remote Denial Of Service Vulnerability
2004-04-21: Microsoft Windows RPCSS Multi-thread Race Condition Vulnerability
2004-04-21: Microsoft Negotiate SSP Remote Buffer Overflow Vulnerability
2004-04-21: Microsoft Windows SSL Library Denial of Service Vulnerability
2004-04-21: Microsoft Windows Help And Support Center URI Validation Code Execution Vulnerability
2004-04-19: Microsoft Windows ASN.1 Library Bit String Processing Integer Handling Vulnerability
2004-04-19: Microsoft ASN.1 Library Length Integer Mishandling Memory Corruption Vulnerability
2004-04-15: Multiple Vendor IKE Implementation Certificate Authenticity Verification Vulnerability
2004-04-07: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
2004-04-07: Microsoft Windows ntdll.dll Buffer Overflow Vulnerability
2004-03-29: Microsoft Windows XP HCP URI Handler Arbitrary Command Execution Vulnerability
2004-03-19: Microsoft Windows XP Explorer.EXE Remote Denial of Service Vulnerability
2004-03-16: Microsoft Windows XP explorer.exe Remote Denial of Service Vulnerability
2004-02-26: Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities
2004-02-25: Microsoft ASN.1 Library Multiple Stack-Based Buffer Overflow Vulnerabilities
2004-02-17: Microsoft Windows XP Help And Support Center Interface Spoofing Weakness
2004-01-21: Microsoft Windows Samba File Sharing Resource Exhaustion Vulnerability
2003-12-16: Microsoft Windows Messenger Service Buffer Overrun Vulnerability
2003-12-09: Microsoft Roaming Profile Resource Quota Bypass Weakness
2003-11-13: Microsoft FrontPage Server Extensions Remote Debug Buffer Overrun Vulnerability
2003-11-13: Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability
2003-11-11: Multiple Vendor Invalid X.509 Certificate Chain Vulnerability
2003-11-11: Microsoft FrontPage Server Extensions SmartHTML Interpreter Denial Of Service Vulnerability
2003-10-23: Microsoft Windows Help And Support Center URI Handler Buffer Overflow Vulnerability
2003-10-23: Microsoft ActiveX Authenticode Verification Bypass Vulnerability
2003-10-10: Microsoft RPCSS DCOM Interface Long Filename Heap Corruption Vulnerability
2003-10-02: Microsoft Windows PostThreadMessage() Arbitrary Process Killing Vulnerability
2003-09-17: Microsoft Windows XP TCP Packet Information Leakage Vulnerability
2003-09-11: Microsoft Windows RPCSS DCOM Interface Denial of Service Vulnerability
2003-09-03: Microsoft Windows NetBIOS Name Service Reply Information Leakage Weakness
2003-07-25: Multiple Vendor SNMP Request Handling Vulnerabilities
2003-07-16: Microsoft Windows XP Shell Desktop.ini Buffer Overflow Vulnerability
2003-07-14: Microsoft Windows HTML Converter HR Align Buffer Overflow Vulnerability
2003-07-09: Microsoft SMB Request Handler Buffer Overflow Vulnerability
2003-07-06: Microsoft RunDLL32.EXE Buffer Overflow Vulnerability
2003-06-02: Microsoft Windows 2000/XP/2003 IPV6 ICMP Flood Denial Of Service Vulnerability
2003-06-02: Microsoft Windows XP Nested Directory Denial of Service Vulnerability
2003-06-02: Microsoft Windows RPC Service Denial of Service Vulnerability
2003-05-29: Microsoft Windows Kernel Message Handling Buffer Overflow Vulnerability
2003-05-22: Microsoft Internet Connection Firewall IPv6 Traffic Blocking Vulnerability
2003-04-30: Microsoft Windows NetDDE Privilege Escalation Vulnerability
2003-04-25: Microsoft Windows SMB NTLM Authentication Interception Weakness
2003-04-20: Microsoft Windows Service Control Manager Race Condition Vulnerability
2003-04-15: Microsoft Windows 2000/XP Registry Editor Custom Permissions Weakness
2003-04-15: Microsoft Windows EngTextOut Non-ASCII Character Denial Of Service Vulnerability
2003-04-11: Multiple Vendor SNMP Trap Handling Vulnerabilities
2003-04-03: Microsoft Windows Locator Service Buffer Overflow Vulnerability
2003-03-27: Microsoft Windows XP Redirector Privilege Escalation Vulnerability
2003-03-20: Microsoft Windows Script Engine JScript.DLL Heap Overflow Vulnerability
2003-03-14: Microsoft Windows PostMessage API Unmasked Password Weakness
2003-03-10: Microsoft Windows Help and Support Center Buffer Overflow Vulnerability
2003-03-07: Microsoft Windows XP Safe Mode Policy Bypass Weakness
2003-02-21: Microsoft Riched20.dll Attribute Buffer Overflow Vulnerability
2003-02-12: Multiple Vendor Spoofed IGMP Report Denial Of Service Vulnerability
2003-02-10: Microsoft Windows NT/2000/XP LAN Manager Password Hashing Weakness
2003-02-07: Microsoft Windows XP HCP URI Buffer Overflow Vulnerability
2003-01-24: Microsoft Windows MSGINA.DLL Read-Lock Denial Of Service Vulnerability
2003-01-23: Microsoft Windows SMB Signing Vulnerability
2003-01-16: Microsoft Windows Fontview Denial of Service Vulnerability
2002-12-27: Microsoft Windows File Protection Signed File Replacement Vulnerability
2002-12-27: Microsoft Windows File Protection Code-Signing Verification Weakness
2002-12-18: Microsoft Windows XP WMA/MP3 Attributes Buffer Overrun Vulnerability
2002-12-12: Microsoft Java Virtual Machine Java Object Instantiation Denial Of Service Vulnerability
2002-12-12: Microsoft Java Virtual Machine Standard Security Manager Access Validation Vulnerability
2002-12-12: Microsoft Java Virtual Machine user.dir Access Information Disclosure Vulnerability
2002-12-12: Microsoft Java Virtual Machine JDBC API Access Vulnerability
2002-12-12: Microsoft Java Virtual Machine URL Parsing Vulnerability
2002-12-12: Microsoft Java Virtual Machine CODEBASE Parameter File Disclosure Vulnerability
2002-12-12: Microsoft Java Virtual Machine COM Object Access Validation Vulnerability
2002-12-12: Microsoft Java Virtual Machine Multiple Vulnerabilities
2002-11-29: Microsoft Windows XP Fast User Switching Process Viewing Weakness
2002-10-17: Microsoft Windows XP HCP URI Handler Abuse Vulnerability
2002-10-16: Multiple Vendor ZIP Files Long Filename Buffer Overflow Vulnerability
2002-10-15: Microsoft Windows 2000/XP Full Event Log Administrative Alert Weakness
2002-10-11: Microsoft Windows Help Facility ActiveX Control Buffer Overflow Vulnerability
2002-10-04: Microsoft Windows XP System Restore Folder Permissions Weakness
2002-10-03: Microsoft Compressed Folders Hostile Decompression Path Vulnerability
2002-10-03: Microsoft Temporary Internet File Execution Vulnerability
2002-10-03: Microsoft Windows Help Facilities Vulnerabilities
2002-09-26: Microsoft PPTP Server Buffer Overflow Vulnerability
2002-09-25: Microsoft FrontPage Server Extensions SmartHTML Buffer Overflow Vulnerability
2002-09-19: Microsoft Windows XP Professional Remote Desktop Denial Of Service Vulnerability
2002-09-18: Windows 2000/NT/XP 16-bit Application Permission Bypass Vulnerability
2002-09-18: Microsoft Network Share Provider SMB Request Buffer Overflow Vulnerability
2002-08-29: Microsoft ActiveX Certificate Enrollment Control Certificate Destruction Vulnerability
2002-08-27: Microsoft Internet Explorer XMLHTTP File Disclosure Vulnerability
2002-08-19: Microsoft Windows WinHlp Item Buffer Overflow Vulnerability
2002-07-03: Microsoft Windows 2000 Remote Access Service Buffer Overflow Vulnerability
2002-04-16: Microsoft Windows 2000 / NT / XP MUP UNC Request Buffer Overflow Vulnerability
2002-03-20: Microsoft SMTP Service Malformed Command Denial of Service Vulnerability
2002-01-30: Microsoft Windows NTFS File Hiding Vulnerability
2002-01-29: Microsoft Windows Inaccurate Login Logging Vulnerability
2002-01-23: Microsoft Windows XP .manifest DoS Vulnerability
2002-01-16: Microsoft Windows XP Pro Upgrade IE Patch Downgrade Vulnerability
2001-12-21: Microsoft Windows C Runtime Library Format String Vulnerability
2001-12-20: Microsoft Universal Plug and Play Simple Service Discovery Protocol Denial of Service Vulnerability
2001-12-20: Microsoft Windows XP Remote Desktop Plaintext Username Vulnerability
2001-12-20: Microsoft Windows XP Fast User Switching Account Lockout Vulnerability
2001-12-17: Microsoft Windows XP Unauthorized Hotkey Program Execution Vulnerability
2001-11-15: Microsoft Windows Terminal Services False IP Address Vulnerability
2001-11-14: Microsoft UPnP Denial of Service Vulnerability
2001-10-30: Microsoft Windows NT CSRSS Memory Access Violation Vulnerability
2001-10-29: Microsoft Windows 2000/XP GDI Denial of Service Vulnerability
2000-09-18: Microsoft Windows DLL Search Path Weakness
Busca detalles en http://www.securityfocus.com/bid/vendor/