CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1208

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile2.95th
PublishedJun 14, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.

Affected Platforms (CPE)

πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2003 Server

= 64-bit
πŸ’»
Microsoft

Windows 2003 Server

= datacenter_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= datacenter_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= enterprise
πŸ’»
Microsoft

Windows 2003 Server

= enterprise
πŸ’»
Microsoft

Windows 2003 Server

= enterprise
πŸ’»
Microsoft

Windows 2003 Server

= enterprise_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= enterprise_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= enterprise_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= r2
πŸ’»
Microsoft

Windows 2003 Server

= standard
πŸ’»
Microsoft

Windows 2003 Server

= standard
πŸ’»
Microsoft

Windows 2003 Server

= standard
πŸ’»
Microsoft

Windows 2003 Server

= standard_64-bit
πŸ’»
Microsoft

Windows 2003 Server

= web
πŸ’»
Microsoft

Windows 2003 Server

= web
πŸ’»
Microsoft

Windows 2003 Server

= web
πŸ’»
Microsoft

Windows 98

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions
πŸ’»
Microsoft

Windows Xp

All versions

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0062.html
πŸ”— http://secunia.com/advisories/15683
πŸ”— http://www.kb.cert.org/vuls/id/851869
πŸ”— http://www.securityfocus.com/bid/13953
πŸ”— http://www.us-cert.gov/cas/techalerts/TA05-165A.html
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-026
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1057
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A381

Related Vulnerabilities

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2000-006110.0

Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document h...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2000-107110.0

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote...