Vulnerabilities > CVE-2005-0057 - Unspecified vulnerability in Microsoft products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
nessus
Summary
The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow.
Vulnerable Configurations
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS05-015.NASL |
description | The remote host is running a version of Windows that contains a flaw in the Hyperlink Object Library that can be abused to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to construct a malicious hyperlink and lure a victim into clicking it. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 16330 |
published | 2005-02-08 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/16330 |
title | MS05-015: Vulnerability in the Hyperlink Object Library may allow code execution (888113) |
code |
|
Oval
accepted 2005-04-13T12:15:00.000-04:00 class vulnerability contributors name Andrew Buttner organization The MITRE Corporation description The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow. family windows id oval:org.mitre.oval:def:2570 status accepted submitted 2005-02-24T12:00:00.000-04:00 title Windows XP Hyperlink Object Library Unchecked Buffer Vulnerability version 64 accepted 2007-02-20T13:40:17.756-05:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Andrew Buttner organization The MITRE Corporation name Andrew Buttner organization The MITRE Corporation
description The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow. family windows id oval:org.mitre.oval:def:3203 status accepted submitted 2005-02-10T12:00:00.000-04:00 title Server 2003 Hyperlink Object Library Unchecked Buffer Vulnerability version 65 accepted 2005-03-23T08:09:00.000-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation description The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow. family windows id oval:org.mitre.oval:def:713 status accepted submitted 2005-02-10T12:00:00.000-04:00 title Windows 2000 Hyperlink Object Library Unchecked Buffer Vulnerability version 64
References
- http://www.us-cert.gov/cas/techalerts/TA05-039A.html
- http://www.kb.cert.org/vuls/id/820427
- http://www.securityfocus.com/bid/12479
- http://securitytracker.com/id?1013119
- http://secunia.com/advisories/14195
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19110
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A713
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3203
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2570
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-015