ID CVE-2005-2117
Summary Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.
References
Vulnerable Configurations
  • Microsoft windows_explorer
    cpe:2.3:a:microsoft:windows_explorer
  • cpe:2.3:o:microsoft:windows_2000:-:sp4:-:fr
    cpe:2.3:o:microsoft:windows_2000:-:sp4:-:fr
  • cpe:2.3:o:microsoft:windows_2003_server:r2
    cpe:2.3:o:microsoft:windows_2003_server:r2
  • Microsoft windows xp_sp1 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp1:tablet_pc
  • Microsoft windows xp_sp2 tablet_pc
    cpe:2.3:o:microsoft:windows_xp:-:sp2:tablet_pc
CVSS
Base: 5.1 (as of 21-10-2005 - 15:19)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS05-049.NASL
description The remote version of Windows contains a version of the Windows Shell that has several vulnerabilities. An attacker may exploit these vulnerabilities by : - Sending a malformed .lnk file a to user on the remote host to trigger an overflow. - Sending a malformed HTML document to a user on the remote host and have him view it in the Windows Explorer preview pane.
last seen 2019-02-21
modified 2018-11-15
plugin id 20002
published 2005-10-11
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=20002
title MS05-049: Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)
oval via4
accepted 2011-05-16T04:00:47.926-04:00
class vulnerability
contributors
  • name Robert L. Hollis
    organization ThreatGuard, Inc.
  • name John Hoyland
    organization Centennial Software
  • name Shane Shaffer
    organization G2, Inc.
  • name Sudhir Gandhe
    organization Telos
  • name Shane Shaffer
    organization G2, Inc.
description Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.
family windows
id oval:org.mitre.oval:def:1291
status accepted
submitted 2005-10-12T12:00:00.000-04:00
title Windows Explorer Web View Script Injection Vulnerability
version 68
refmap via4
bid 15064
cert TA05-284A
confirm http://support.avaya.com/elmodocs2/security/ASA-2005-214.pdf
ms MS05-049
secunia
  • 17168
  • 17172
  • 17223
Last major update 10-09-2008 - 15:41
Published 21-10-2005 - 14:02
Last modified 12-10-2018 - 17:37
Back to Top