CVE-2005-1984 - Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, a

CVE-2005-1984

Summary

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

References

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

CVSS

Base:	7.5 (as of 12-10-2018 - 21:36)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

oval via4

accepted

2011-05-16T04:00:04.818-04:00

class

vulnerability

contributors

name Robert L. Hollis
organization ThreatGuard, Inc.
name Shane Shaffer
organization G2, Inc.
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.

description

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

family

windows

oval:org.mitre.oval:def:100077

status

accepted

submitted

2005-08-16T12:00:00.000-04:00

title

Windows XP,SP1 Print Spooler Service Buffer Overflow

version

accepted

2011-05-16T04:00:12.594-04:00

class

vulnerability

contributors

name Matthew Burton
organization The MITRE Corporation
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.

description

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

family

windows

oval:org.mitre.oval:def:1045

status

accepted

submitted

2005-09-19T04:00:00.000-04:00

title

Windows 2000 Print Spooler Service Buffer Overflow

version

accepted

2011-05-16T04:00:55.008-04:00

class

vulnerability

contributors

name Matthew Burton
organization The MITRE Corporation
name Shane Shaffer
organization G2, Inc.
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.

description

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

family

windows

oval:org.mitre.oval:def:1405

status

accepted

submitted

2005-09-19T04:00:00.000-04:00

title

Server 2003 Print Spooler Service Buffer Overflow

version

accepted

2016-02-19T10:00:00.000-04:00

class

vulnerability

contributors

name Robert L. Hollis
organization ThreatGuard, Inc.
name Robert L. Hollis
organization ThreatGuard, Inc.
name Dragos Prisaca
organization Gideon Technologies, Inc.
name Shane Shaffer
organization G2, Inc.
name Sudhir Gandhe
organization Telos
name Shane Shaffer
organization G2, Inc.
name Maria Mikhno
organization ALTX-SOFT

description

Buffer overflow in the Print Spooler service (Spoolsv.exe) for Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via a malicious message.

family

windows

oval:org.mitre.oval:def:256

status

accepted

submitted

2006-09-22T05:40:00.000-04:00

title

Windows XP,SP2 Print Spooler Service Buffer Overflow

version

refmap via4

bid	14514
cert	TA05-221A
cert-vn	VU#220821
sectrack	1014638
secunia	16356

Last major update

12-10-2018 - 21:36

Published

10-08-2005 - 04:00

Last modified

12-10-2018 - 21:36