Oval Definition:oval:org.mitre.oval:def:1406
Revision Date:2011-05-16Version:45
Title:Buffer Overflow in CDOSYS Message Processing (WinXP,SP1)
Description:Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the "Content-Type" string.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-1987
Platform(s):Microsoft Windows XP
Product(s):
Definition Synopsis
  • Windows XP 32-bit edition is installed
  • Windows XP is installed
  • AND 32-Bit version of Windows is installed
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • AND cdosys.dll is less than 6.1.1002.0
    • BACK