ID CVE-2005-0550
Summary Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
References
Vulnerable Configurations
  • Microsoft Windows 2000
    cpe:2.3:o:microsoft:windows_2000
  • cpe:2.3:o:microsoft:windows_2003_server:r2
    cpe:2.3:o:microsoft:windows_2003_server:r2
  • Microsoft windows xp_sp1 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp1:tablet_pc
  • Microsoft windows xp_sp2 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp2:tablet_pc
CVSS
Base: 2.1 (as of 08-06-2005 - 10:32)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS05-018.NASL
description The remote host contains a version of the Windows kernel that is vulnerable to a security flaw that could allow a local user to elevate his privileges or to crash the remote host (therefore causing a denial of service).
last seen 2019-02-21
modified 2018-11-15
plugin id 18022
published 2005-04-12
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=18022
title MS05-018: Vulnerabilities in Windows Kernel (890859)
oval via4
  • accepted 2005-06-22T12:38:00.000-04:00
    class vulnerability
    contributors
    • name Ingrid Skoog
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    description Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
    family windows
    id oval:org.mitre.oval:def:1271
    status accepted
    submitted 2005-05-02T12:00:00.000-04:00
    title Server 2003 Object Management Vulnerability
    version 63
  • accepted 2011-05-16T04:02:20.193-04:00
    class vulnerability
    contributors
    • name Ingrid Skoog
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
    family windows
    id oval:org.mitre.oval:def:2043
    status accepted
    submitted 2005-05-02T12:00:00.000-04:00
    title Windows XP,SP2 Object Management Vulnerability
    version 68
  • accepted 2011-05-16T04:02:58.864-04:00
    class vulnerability
    contributors
    • name Ingrid Skoog
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
    family windows
    id oval:org.mitre.oval:def:4397
    status accepted
    submitted 2005-05-02T12:00:00.000-04:00
    title Windows XP Object Management Vulnerability
    version 69
  • accepted 2011-05-16T04:03:06.379-04:00
    class vulnerability
    contributors
    • name Ingrid Skoog
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    • name Andrew Buttner
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to cause a denial of service (i.e., system crash) via a malformed request, aka "Object Management Vulnerability".
    family windows
    id oval:org.mitre.oval:def:4832
    status accepted
    submitted 2005-05-02T12:00:00.000-04:00
    title Windows 2000 Object Management Vulnerability
    version 68
refmap via4
ms MS05-018
Last major update 10-09-2008 - 15:36
Published 02-05-2005 - 00:00
Last modified 12-10-2018 - 17:36
Back to Top