Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2005-1212
HistoryJun 14, 2005 - 4:00 a.m.

CVE-2005-1212

2005-06-1404:00:00
[email protected]
web.nvd.nist.gov
28
cve-2005-1212
buffer overflow
microsoft
step-by-step interactive training
orun32.exe
remote code execution
bookmark link file

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

High

0.105 Low

EPSS

Percentile

95.0%

JSON

Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.

Affected configurations

NVD
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4
OR
microsoftwindows_2000sp4fr
OR
microsoftwindows_2000_terminal_services
OR
microsoftwindows_2000_terminal_servicessp1
OR
microsoftwindows_2000_terminal_servicessp2
OR
microsoftwindows_2000_terminal_servicessp3
OR
microsoftwindows_2003_serverMatch64-bit
OR
microsoftwindows_2003_serverMatchdatacenter_64-bitsp1
OR
microsoftwindows_2003_serverMatchdatacenter_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise64-bit
OR
microsoftwindows_2003_serverMatchenterprisesp1
OR
microsoftwindows_2003_serverMatchenterprisesp1_beta_1
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchenterprise_64-bitsp1
OR
microsoftwindows_2003_serverMatchenterprise_64-bitsp1_beta_1
OR
microsoftwindows_2003_serverMatchr2
OR
microsoftwindows_2003_serverMatchr264-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchr2sp1
OR
microsoftwindows_2003_serverMatchr2sp1_beta_1
OR
microsoftwindows_2003_serverMatchstandard64-bit
OR
microsoftwindows_2003_serverMatchstandardsp1
OR
microsoftwindows_2003_serverMatchstandardsp1_beta_1
OR
microsoftwindows_2003_serverMatchstandard_64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_2003_serverMatchwebsp1
OR
microsoftwindows_2003_serverMatchwebsp1_beta_1
OR
microsoftwindows_98gold
OR
microsoftwindows_98se
OR
microsoftwindows_me
OR
microsoftwindows_mesecond_edition
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xpembedded
OR
microsoftwindows_xphome
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xpgold
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1embedded
OR
microsoftwindows_xpsp1home
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp1tablet_pc
OR
microsoftwindows_xpsp2home
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2tablet_pc

Related

cvelist 2
nessus 1
nvd 2
securityvulns 2
cve 1
cvelist
cvelist
CVE-2005-1212
2005-06-14 04:00:00
CVE-2006-3448
2007-02-13 20:00:00
nessus
nessus
MS05-031: Vulnerability in Step-by-Step Interactive Training (898458)
2005-06-14 00:00:00
nvd
nvd
CVE-2005-1212
2005-06-14 04:00:00
CVE-2006-3448
2007-02-13 20:28:00
securityvulns
securityvulns
iDEFENSE Security Advisory 06.14.05: Microsoft Windows Interactive Training Buffer Overflow Vulnerability
2005-06-15 00:00:00
Microsoft Security Bulletin MS05-031 Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458)
2005-06-15 00:00:00
cve
cve
CVE-2006-3448
2007-02-13 20:28:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

High

0.105 Low

EPSS

Percentile

95.0%

JSON
Related for CVE-2005-1212
cvelist2nessus1nvd2securityvulns2cve1