CVE-2005-1205

EPSS 41.24%
Veröffentlicht 14.06.2005 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows 2003 Server Versionenterprise Edition64-bit

Microsoft ≫ Windows 2003 Server Versionr2 Edition64-bit

Microsoft ≫ Windows 2003 Server Versionstandard Edition64-bit

Microsoft ≫ Windows 2003 Server Versionweb

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	41.24%	0.973

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://idefense.com/application/poi/display?id=260&type=vulnerabilities

Patch

Vendor Advisory

http://securitytracker.com/id?1014203

http://www.kb.cert.org/vuls/id/800829

Patch

Third Party Advisory

US Government Resource

http://www.securityfocus.com/bid/13940

http://secunia.com/advisories/15690/

Patch

Vendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-033

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1132

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A605

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A784

https://nvd.nist.gov/vuln/detail/CVE-2005-1205

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-1205

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-1205

EUVD