CVE-2005-1208 in Windowsinfo

Summary

Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

04/22/2005

Disclosure

06/14/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-122 (Confirmed)

CVSS

6.5

EPSS

0.38378

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-1208
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-1208
CVE Details	https://www.cvedetails.com/cve/CVE-2005-1208/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!