Vulnerability Name: | CVE-2005-1985 (CCN-21700) | ||||||||||||||||||||||||
Assigned: | 2005-08-09 | ||||||||||||||||||||||||
Published: | 2005-08-09 | ||||||||||||||||||||||||
Updated: | 2018-10-12 | ||||||||||||||||||||||||
Summary: | The Client Service for NetWare (CSNW) on Microsoft Windows 2000 SP4, XP SP1 and Sp2, and Server 2003 SP1 and earlier, allows remote attackers to execute arbitrary code due to an "unchecked buffer" when processing certain crafted network messages. | ||||||||||||||||||||||||
CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||||||||||||||
CVSS v2 Severity: | 7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||||||||||||||||||
Vulnerability Type: | CWE-Other | ||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2005-1985 Source: CCN Type: SA17165 Microsoft Windows Client Service for NetWare Buffer Overflow Source: SECUNIA Type: UNKNOWN 17165 Source: CCN Type: SECTRACK ID: 1015041 Microsoft Client Service for NetWare Buffer Overflow Lets Remote Users Execute Arbitrary Code Source: SECTRACK Type: UNKNOWN 1015041 Source: CCN Type: Microsoft Security Bulletin MS05-046 Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) Source: OSVDB Type: UNKNOWN 19922 Source: CCN Type: OSVDB ID: 19922 Microsoft Windows Client Service for NetWare (CSNW) Remote Overflow Source: BID Type: UNKNOWN 15066 Source: CCN Type: BID-15066 Microsoft Windows Client Service For Netware Buffer Overflow Vulnerability Source: MS Type: UNKNOWN MS05-046 Source: XF Type: UNKNOWN win-csnw-bo(21700) Source: XF Type: UNKNOWN win-csnw-bo(21700) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1106 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1210 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1536 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1544 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:910 | ||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||
| |||||||||||||||||||||||||
BACK |