CVE-2005-1207 - Buffer overflow in the Web Client service in Microsoft Windows XP and Windows Server 2003 allows rem

CVE-2005-1207

Summary

Buffer overflow in the Web Client service in Microsoft Windows XP and Windows Server 2003 allows remote authenticated users to execute arbitrary code via a crafted WebDAV request containing special parameters.

References

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 12-10-2018 - 21:36)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

oval via4

accepted

2011-05-16T04:00:42.395-04:00

class

vulnerability

contributors

name Matthew Burton
organization The MITRE Corporation
name Shane Shaffer
organization G2, Inc.
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.

description

family

windows

oval:org.mitre.oval:def:1255

status

accepted

submitted

2005-07-15T12:00:00.000-04:00

title

Windows XP Web Client Service Buffer Overflow

version

accepted

2011-05-16T04:03:24.666-04:00

class

vulnerability

contributors

name Matthew Burton
organization The MITRE Corporation
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.

description

family

windows

oval:org.mitre.oval:def:721

status

accepted

submitted

2005-07-15T12:00:00.000-04:00

title

Server 2003 Web Client Service Buffer Overflow

version

refmap via4

secunia

15696

Last major update

12-10-2018 - 21:36

Published

14-06-2005 - 04:00

Last modified

12-10-2018 - 21:36