10
CVE-2005-1208
- EPSS 47.15%
- Veröffentlicht 14.06.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:39
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 2003 Server Version64-bit
Microsoft ≫ Windows 2003 Server Versiondatacenter_64-bit Updatesp1
Microsoft ≫ Windows 2003 Server Versiondatacenter_64-bit Updatesp1_beta_1
Microsoft ≫ Windows 2003 Server Versionenterprise Edition64-bit
Microsoft ≫ Windows 2003 Server Versionenterprise Updatesp1
Microsoft ≫ Windows 2003 Server Versionenterprise Updatesp1_beta_1
Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit
Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit Updatesp1
Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit Updatesp1_beta_1
Microsoft ≫ Windows 2003 Server Versionr2
Microsoft ≫ Windows 2003 Server Versionr2 Edition64-bit
Microsoft ≫ Windows 2003 Server Versionr2 Editiondatacenter_64-bit
Microsoft ≫ Windows 2003 Server Versionr2 Updatesp1
Microsoft ≫ Windows 2003 Server Versionr2 Updatesp1_beta_1
Microsoft ≫ Windows 2003 Server Versionstandard Edition64-bit
Microsoft ≫ Windows 2003 Server Versionstandard Updatesp1
Microsoft ≫ Windows 2003 Server Versionstandard Updatesp1_beta_1
Microsoft ≫ Windows 2003 Server Versionstandard_64-bit
Microsoft ≫ Windows 2003 Server Versionweb
Microsoft ≫ Windows 2003 Server Versionweb Updatesp1
Microsoft ≫ Windows 2003 Server Versionweb Updatesp1_beta_1
Microsoft ≫ Windows 98 Updategold
Microsoft ≫ Windows Xp Edition64-bit
Microsoft ≫ Windows Xp Editionembedded
Microsoft ≫ Windows Xp Editionhome
Microsoft ≫ Windows Xp Editionmedia_center
Microsoft ≫ Windows Xp Updategold
Microsoft ≫ Windows Xp Updategold Editionprofessional
Microsoft ≫ Windows Xp Updatesp1 Edition64-bit
Microsoft ≫ Windows Xp Updatesp1 Editionembedded
Microsoft ≫ Windows Xp Updatesp1 Editionhome
Microsoft ≫ Windows Xp Updatesp1 Editionmedia_center
Microsoft ≫ Windows Xp Updatesp1 Editiontablet_pc
Microsoft ≫ Windows Xp Updatesp2 Editionhome
Microsoft ≫ Windows Xp Updatesp2 Editionmedia_center
Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 47.15% | 0.987 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://www.us-cert.gov/cas/techalerts/TA05-165A.html
http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0062.html
http://secunia.com/advisories/15683
http://www.kb.cert.org/vuls/id/851869
http://www.securityfocus.com/bid/13953
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-026
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1057
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A381
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A463