Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2117

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-2117
Last Modified 10 Sep 2008 03:41:06
Published 21 Oct 2005 02:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-2117

Summary

Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows Xp

Application

  • Microsoft Windows Explorer


References

CERT - TA05-284A

BID - 15064

MS - MS05-049

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2005-214.pdf

SECUNIA - 17223

SECUNIA - 17172

SECUNIA - 17168


Last Updated: 27 May 2016 10:40:24