ID CVE-2005-1984
Summary Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2000:-:sp4:-:fr
    cpe:2.3:o:microsoft:windows_2000:-:sp4:-:fr
  • cpe:2.3:o:microsoft:windows_2003_server:r2
    cpe:2.3:o:microsoft:windows_2003_server:r2
  • Microsoft windows xp_sp1 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp1:tablet_pc
  • Microsoft windows xp_sp2 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp2:tablet_pc
CVSS
Base: 7.5 (as of 10-08-2005 - 07:55)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Windows : Microsoft Bulletins
    NASL id SMB_NT_MS05-043.NASL
    description The remote host contains a version of the Print Spooler service that is vulnerable to a security flaw that could allow an attacker to execute code on the remote host or crash the spooler service. An attacker can execute code on the remote host with a NULL session against : - Windows 2000 An attacker can crash the remote service with a NULL session against : - Windows 2000 - Windows XP SP1 An attacker needs valid credentials to crash the service against : - Windows 2003 - Windows XP SP2
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 19406
    published 2005-08-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=19406
    title MS05-043: Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)
  • NASL family Windows
    NASL id SMB_KB896423.NASL
    description The remote host contains a version of the Print Spooler service that may allow an attacker to execute code on the remote host or crash the spooler service. An attacker can execute code on the remote host with a NULL session against : - Windows 2000 An attacker can crash the remote service with a NULL session against : - Windows 2000 - Windows XP SP1 An attacker needs valid credentials to crash the service against : - Windows 2003 - Windows XP SP2
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 19407
    published 2005-08-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=19407
    title MS05-043: Vulnerability in Printer Spooler Service Could Allow Remote Code Execution (896423) (uncredentialed check)
oval via4
  • accepted 2011-05-16T04:00:04.818-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.
    family windows
    id oval:org.mitre.oval:def:100077
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Windows XP,SP1 Print Spooler Service Buffer Overflow
    version 67
  • accepted 2011-05-16T04:00:12.594-04:00
    class vulnerability
    contributors
    • name Matthew Burton
      organization The MITRE Corporation
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.
    family windows
    id oval:org.mitre.oval:def:1045
    status accepted
    submitted 2005-09-19T04:00:00.000-04:00
    title Windows 2000 Print Spooler Service Buffer Overflow
    version 66
  • accepted 2011-05-16T04:00:55.008-04:00
    class vulnerability
    contributors
    • name Matthew Burton
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.
    family windows
    id oval:org.mitre.oval:def:1405
    status accepted
    submitted 2005-09-19T04:00:00.000-04:00
    title Server 2003 Print Spooler Service Buffer Overflow
    version 68
  • accepted 2016-02-19T10:00:00.000-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    • name Maria Mikhno
      organization ALTX-SOFT
    description Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.
    family windows
    id oval:org.mitre.oval:def:256
    status accepted
    submitted 2006-09-22T05:40:00.000-04:00
    title Windows XP,SP2 Print Spooler Service Buffer Overflow
    version 70
refmap via4
bid 14514
cert TA05-221A
cert-vn VU#220821
ms MS05-043
sectrack 1014638
secunia 16356
Last major update 10-09-2008 - 15:40
Published 10-08-2005 - 00:00
Last modified 12-10-2018 - 17:36
Back to Top