Vulnerability CVE-2005-1985

Vulnerability Name:

CVE-2005-1985 (CCN-21700)

Assigned:

2005-08-09

Published:

2005-08-09

Updated:

2018-10-12

Summary:

The Client Service for NetWare (CSNW) on Microsoft Windows 2000 SP4, XP SP1 and Sp2, and Server 2003 SP1 and earlier, allows remote attackers to execute arbitrary code due to an "unchecked buffer" when processing certain crafted network messages.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2005-1985

Source: CCN
Type: SA17165
Microsoft Windows Client Service for NetWare Buffer Overflow

Source: SECUNIA
Type: UNKNOWN
17165

Source: CCN
Type: SECTRACK ID: 1015041
Microsoft Client Service for NetWare Buffer Overflow Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1015041

Source: CCN
Type: Microsoft Security Bulletin MS05-046
Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589)

Source: OSVDB
Type: UNKNOWN
19922

Source: CCN
Type: OSVDB ID: 19922
Microsoft Windows Client Service for NetWare (CSNW) Remote Overflow

Source: BID
Type: UNKNOWN
15066

Source: CCN
Type: BID-15066
Microsoft Windows Client Service For Netware Buffer Overflow Vulnerability

Source: MS
Type: UNKNOWN
MS05-046

Source: XF
Type: UNKNOWN
win-csnw-bo(21700)

Source: XF
Type: UNKNOWN
win-csnw-bo(21700)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1106

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1210

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1536

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1544

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:910

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*

OR cpe:/a:microsoft:windows_2003:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:910	V	CSNW Remote Buffer Overflow via Network Messages (Server 2003,SP1)	2011-05-16
oval:org.mitre.oval:def:1544	V	CSNW Remote Buffer Overflow via Network Messages (Server 2003)	2011-05-16
oval:org.mitre.oval:def:1106	V	CSNW Remote Buffer Overflow via Network Messages (WinXP,SP1)	2011-05-16
oval:org.mitre.oval:def:1210	V	CSNW Remote Buffer Overflow via Network Messages (WinXP,SP2)	2011-05-16
oval:org.mitre.oval:def:1536	V	CSNW Remote Buffer Overflow via Network Messages (Win2k,SP4)	2011-05-16

BACK