CVE-2005-2117

EPSS 62.88%
Published 21.10.2005 18:02:00
Last modified 03.04.2025 01:03:51
Source secure@microsoft.com
Teams watchlist Login
Open Login

Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.

Affected products Warnungen 0 Metrics 2 CWE 0 References 11

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Explorer

Microsoft ≫ Windows 2000 Updatesp4 Langfr

Microsoft ≫ Windows 2003 Server Versionr2

Microsoft ≫ Windows Xp Updatesp1 Editiontablet_pc

Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	62.88%	0.983

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/17223

http://secunia.com/advisories/17172

http://support.avaya.com/elmodocs2/security/ASA-2005-214.pdf

http://www.us-cert.gov/cas/techalerts/TA05-284A.html

US Government Resource

http://secunia.com/advisories/17168

http://www.securityfocus.com/bid/15064

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-049

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1291

https://nvd.nist.gov/vuln/detail/CVE-2005-2117

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2117

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2117

EUVD