Vulnerability Name:

CVE-2005-0055 (CCN-19133)

Assigned:2005-02-08
Published:2005-02-08
Updated:2021-07-23
Summary:Internet Explorer 5.01, 5.5, and 6 does not properly validate buffers when handling certain DHTML methods including the createControlRange Javascript function, which allows remote attackers to execute arbitrary code, aka the "DHTML Method Heap Memory Corruption Vulnerability."
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2005-0055

Source: CCN
Type: SA11165
Microsoft Internet Explorer Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
11165

Source: MISC
Type: UNKNOWN
http://secunia.com/secunia_research/2004-12/advisory/

Source: CCN
Type: SECTRACK ID: 1013125
Microsoft Internet Explorer DHTML Method Heap Overflow Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1013125

Source: CCN
Type: CIAC Information Bulletin P-125
Microsoft Cumulative Security Update for Internet Explorer

Source: CCN
Type: US-CERT VU#843771
Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability

Source: CERT-VN
Type: Patch, US Government Resource
VU#843771

Source: CCN
Type: Microsoft Security Bulletin MS05-014
Cumulative Security Update for Internet Explorer (867282)

Source: CCN
Type: Microsoft Security Bulletin MS05-020
Cumulative Security Update for Internet Explorer (890923)

Source: CCN
Type: Microsoft Security Bulletin MS05-025
Cumulative Security Update for Internet Explorer (883939)

Source: CCN
Type: Microsoft Security Bulletin MS05-038
Cumulative Security Update for Internet Explorer (896727)

Source: CCN
Type: Microsoft Security Bulletin MS05-052
Cumulative Security Update for Internet Explorer (896688)

Source: CCN
Type: Microsoft Security Bulletin MS05-054
Cumulative Security Update for Internet Explorer (905915)

Source: CCN
Type: Microsoft Security Bulletin MS06-004
Cumulative Security Update for Internet Explorer (910620)

Source: CCN
Type: Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)

Source: CCN
Type: Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)

Source: CCN
Type: Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)

Source: CCN
Type: Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)

Source: CCN
Type: Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)

Source: CCN
Type: Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)

Source: CCN
Type: Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)

Source: CCN
Type: Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Source: CCN
Type: Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)

Source: CCN
Type: Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)

Source: CCN
Type: Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)

Source: CCN
Type: Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)

Source: CCN
Type: Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)

Source: CCN
Type: Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)

Source: CCN
Type: Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)

Source: CCN
Type: Microsoft Security Bulletin MS08-058
Cumulative Security Update for Internet Explorer (956390)

Source: CCN
Type: BID-12427
Microsoft Internet Explorer AddChannel Cross-Zone Scripting Vulnerability

Source: CCN
Type: BID-12475
Microsoft Internet Explorer DHTML Method Buffer Overflow Vulnerability

Source: CERT
Type: Patch, US Government Resource
TA05-039A

Source: MS
Type: UNKNOWN
MS05-014

Source: XF
Type: UNKNOWN
ie-dhtml-method-bo(19133)

Source: XF
Type: UNKNOWN
ie-cdf-execute-code(19137)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1005

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:2692

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:3137

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:3910

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:710

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:*:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:*:itanium:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2005-0055 (CCN-19137)

    Assigned:2005-02-08
    Published:2005-02-08
    Updated:2018-10-12
    Summary:Internet Explorer 5.01, 5.5, and 6 does not properly validate buffers when handling certain DHTML methods including the createControlRange Javascript function, which allows remote attackers to execute arbitrary code, aka the "DHTML Method Heap Memory Corruption Vulnerability."
    CVSS v3 Severity:5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): High
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): Low
    Integrity (I): Low
    Availibility (A): Low
    CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Authentication (Au): None
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): Partial
    Availibility (A): Partial
    5.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): High
    Athentication (Au): None
    Impact Metrics:Confidentiality (C): Partial
    Integrity (I): Partial
    Availibility (A): Partial
    Vulnerability Type:CWE-Other
    Vulnerability Consequences:Gain Access
    References:Source: MITRE
    Type: CNA
    CVE-2005-0055

    Source: MITRE
    Type: CNA
    CVE-2005-0056

    Source: CCN
    Type: SA11165
    Microsoft Internet Explorer Multiple Vulnerabilities

    Source: CCN
    Type: SECTRACK ID: 1013125
    Microsoft Internet Explorer DHTML Method Heap Overflow Lets Remote Users Execute Arbitrary Code

    Source: CCN
    Type: SECTRACK ID: 1013126
    Microsoft Internet Explorer CDF Scripting Error Lets Remote Users Execute Scripting Code in Arbitrary Domains

    Source: CCN
    Type: CIAC Information Bulletin P-125
    Microsoft Cumulative Security Update for Internet Explorer

    Source: CCN
    Type: GreyHats Security Web site
    External AddChannel Cross Zone Scripting Vulnerability

    Source: CCN
    Type: US-CERT VU#823971
    Microsoft Internet Explorer contains a Channel Definition Format (CDF) cross-domain vulnerability

    Source: CCN
    Type: US-CERT VU#843771
    Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability

    Source: CCN
    Type: Microsoft Security Bulletin MS05-014
    Cumulative Security Update for Internet Explorer (867282)

    Source: CCN
    Type: Microsoft Security Bulletin MS05-020
    Cumulative Security Update for Internet Explorer (890923)

    Source: CCN
    Type: Microsoft Security Bulletin MS05-025
    Cumulative Security Update for Internet Explorer (883939)

    Source: CCN
    Type: Microsoft Security Bulletin MS05-038
    Cumulative Security Update for Internet Explorer (896727)

    Source: CCN
    Type: Microsoft Security Bulletin MS05-052
    Cumulative Security Update for Internet Explorer (896688)

    Source: CCN
    Type: Microsoft Security Bulletin MS05-054
    Cumulative Security Update for Internet Explorer (905915)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-004
    Cumulative Security Update for Internet Explorer (910620)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-013
    Cumulative Security Update for Internet Explorer (912812)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-021
    Cumulative Security Update for Internet Explorer (916281)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-042
    Cumulative Security Update for Internet Explorer (918899)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-067
    Cumulative Security Update for Internet Explorer (922760)

    Source: CCN
    Type: Microsoft Security Bulletin MS06-072
    Cumulative Security Update for Internet Explorer (925454)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-016
    Cumulative Security Update for Internet Explorer (928090)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-027
    Cumulative Security Update for Internet Explorer (931768)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-033
    Cumulative Security Update for Internet Explorer (933566)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-045
    Cumulative Security Update for Internet Explorer (937143)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-057
    Cumulative Security Update for Internet Explorer (939653)

    Source: CCN
    Type: Microsoft Security Bulletin MS07-069
    Cumulative Security Update for Internet Explorer (942615)

    Source: CCN
    Type: Microsoft Security Bulletin MS08-010
    Cumulative Security Update for Internet Explorer (944533)

    Source: CCN
    Type: Microsoft Security Bulletin MS08-024
    Cumulative Security Update for Internet Explorer (947864)

    Source: CCN
    Type: Microsoft Security Bulletin MS08-031
    Cumulative Security Update for Internet Explorer (950759)

    Source: CCN
    Type: Microsoft Security Bulletin MS08-045
    Cumulative Security Update for Internet Explorer (953838)

    Source: CCN
    Type: Microsoft Security Bulletin MS08-058
    Cumulative Security Update for Internet Explorer (956390)

    Source: CCN
    Type: BID-12427
    Microsoft Internet Explorer AddChannel Cross-Zone Scripting Vulnerability

    Source: CCN
    Type: BID-12475
    Microsoft Internet Explorer DHTML Method Buffer Overflow Vulnerability

    Source: XF
    Type: UNKNOWN
    ie-cdf-execute-code(19137)

    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:710
    V
    		IE6 DHTML Method Heap Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:3910
    V
    		IE5.01,SP4 DHTML Method Heap Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:1005
    V
    		IE6,SP1 DHTML Method Heap Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:2692
    V
    		IE5.01,SP3 DHTML Method Heap Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:3137
    V
    		IE6 DHTML Method Heap Memory Corruption Vulnerability (Server 2003)
    2014-02-24
    BACK
    microsoft internet explorer 5.5
    microsoft internet explorer 5.5 sp1
    microsoft internet explorer 5.0.1 sp1
    microsoft internet explorer 5.0.1 sp2
    microsoft ie 6.0 sp1
    microsoft ie 6.0 sp2
    microsoft internet explorer 5.0.1
    microsoft internet explorer 5.5 sp2
    microsoft internet explorer 6.0
    microsoft internet explorer 5.0.1 sp3
    microsoft internet explorer 5.0.1 sp4
    microsoft windows 98 *
    microsoft windows 98se *
    microsoft windows me *
    microsoft windows 2000 * sp3
    microsoft windows xp * sp1
    microsoft windows 2000 * sp4
    microsoft windows 2003_server
    microsoft windows xp sp2
    microsoft windows 2003 server *