CyberSec.Space Logo
Back to CVE Browser

CVE-2005-0050

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0780%
EPSS Percentile12.38th
PublishedMay 2, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, aka the "License Logging Service Vulnerability."

Affected Platforms (CPE)

πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2003 Server

= 2000
πŸ’»
Microsoft

Windows 2003 Server

= 2003
πŸ’»
Microsoft

Windows 2003 Server

= enterprise
πŸ’»
Microsoft

Windows 2003 Server

= enterprise_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= standard
πŸ’»
Microsoft

Windows 2003 Server

= web
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0

References & Advisories

πŸ”— http://www.kb.cert.org/vuls/id/130433
πŸ”— http://www.us-cert.gov/cas/techalerts/TA05-039A.html
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-010
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/19101
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2568
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3582
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4786
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A644

Related Vulnerabilities

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2000-006110.0

Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document h...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2000-107110.0

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote...