CVE-2005-1987

Description

Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the "Content-Type" string.

Related CPE's

Could not find any relations

References

TA05-284A

Third Party AdvisoryUS Government Resource

VU#883460

Third Party AdvisoryUS Government Resource

1015038

Third Party AdvisoryVDB Entry

1015039

Third Party AdvisoryVDB Entry

15067

Third Party AdvisoryVDB Entry

17167

Third Party Advisory

20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability

Broken Link

19905

Broken Link

20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability

Mailing ListThird Party Advisory

win-cdo-bo(22495)

Third Party AdvisoryVDB Entry

oval:org.mitre.oval:def:848

Third Party Advisory

oval:org.mitre.oval:def:581

Third Party Advisory

oval:org.mitre.oval:def:1515

Third Party Advisory

oval:org.mitre.oval:def:1420

Third Party Advisory

oval:org.mitre.oval:def:1406

Third Party Advisory

oval:org.mitre.oval:def:1201

Third Party Advisory

oval:org.mitre.oval:def:1130

Third Party Advisory

Q907245

PatchVendor Advisory

MS05-048

PatchVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version	2.0
VectorString	AV:N/AC:L/Au:N/C:P/I:P/A:P
AccessVector	NETWORK
AccessComplexity	LOW
Authentication	NONE
ConfidentialityImpact	PARTIAL
IntegrityImpact	PARTIAL
AvailabilityImpact	PARTIAL
BaseScore	7.5

Created by Yello

About Severity.io