CVE-2005-1212

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2003 Server; Windows 2000 Terminal Services; Windows Xp; Windows 2000
Vendor: CVE Published:; 14 June 2005

Summary

Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.

References

http://www.securityfocus.com/bid/13944

vdb-entryx_refsource_BID

http://idefense.com/application/poi/display?id=262&type=v...

third-party-advisoryx_refsource_IDEFENSE

http://secunia.com/advisories/15669/

third-party-advisoryx_refsource_SECUNIA

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 14, 2005
Vulnerability Reserved
Apr 22, 2005

Collectors

NVD DatabaseMitre Database