CVE-2005-1205

EPSS 41.24%
Published 14.06.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source secure@microsoft.com
Teams watchlist Login
Open Login

The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2003 Server Versionenterprise Edition64-bit

Microsoft ≫ Windows 2003 Server Versionr2 Edition64-bit

Microsoft ≫ Windows 2003 Server Versionstandard Edition64-bit

Microsoft ≫ Windows 2003 Server Versionweb

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	41.24%	0.973

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://idefense.com/application/poi/display?id=260&type=vulnerabilities

Patch

Vendor Advisory

http://securitytracker.com/id?1014203

http://www.kb.cert.org/vuls/id/800829

Patch

Third Party Advisory

US Government Resource

http://www.securityfocus.com/bid/13940

http://secunia.com/advisories/15690/

Patch

Vendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-033

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1132

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A605

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A784

https://nvd.nist.gov/vuln/detail/CVE-2005-1205

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-1205

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-1205

EUVD