CVSS: 7.2EPSS: 0%CPEs: 24EXPL: 0CVE-2005-0060
https://notcve.org/view.php?id=CVE-2005-0060
Buffer overflow in the font processing component of Microsoft Windows 2000, Windows XP SP1 and SP2, and Windows Server 2003 allows local users to gain privileges via a specially-designed application. El desbordamiento del búfer en el componente de procesamiento de fuentes de Microsoft Windows 2000, Windows XP SP1 y SP2, y Windows Server 2003 permite a los usuarios locales obtener privilegios a través de una aplicación especialmente diseñada. • http://marc.info/?l=bugtraq&m=111343529426926&w=2 http://www.ngssoftware.com/advisories/ms-01.txt https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2562 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3941 https://oval.cisecurity.org/repository/search/defin •
CVSS: 5.0EPSS: 96%CPEs: 14EXPL: 3CVE-2004-0790 – Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages Denial of Service (MS05-019)
https://notcve.org/view.php?id=CVE-2004-0790
Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities. • https://www.exploit-db.com/exploits/948 https://www.exploit-db.com/exploits/25389 https://www.exploit-db.com/exploits/942 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.4/SCOSA-2006.4.txt http://marc.info/?l=bugtraq&m=112861397904255&w=2 http://secunia.com/advisories/18317 http://secunia.com/advisories/22341 http://securityreason.com/securityalert/19 http://securityreason.com/securityalert/57 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101658-1 htt •
CVSS: 5.0EPSS: 8%CPEs: 2EXPL: 2CVE-2005-0688 – Microsoft Windows - Malformed IP Options Denial of Service (MS05-019)
https://notcve.org/view.php?id=CVE-2005-0688
Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016). • https://www.exploit-db.com/exploits/942 https://www.exploit-db.com/exploits/861 http://marc.info/?l=bugtraq&m=111005099504081&w=2 http://secunia.com/advisories/22341 http://www.securityfocus.com/archive/1/449179/100/0/threaded http://www.vupen.com/english/advisories/2006/3983 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064 https://oval.cisecurity.org/repository&#x •
CVSS: 7.5EPSS: 88%CPEs: 55EXPL: 3CVE-2005-0416 – Microsoft Internet Explorer - '.ANI' Downloader (MS05-002)
https://notcve.org/view.php?id=CVE-2005-0416
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allows remote attackers to execute arbitrary code via the AnimationHeaderBlock length field, which leads to a stack-based buffer overflow. La capacidad de Cursor Animado de Windows (archivos .ANI) de Windows NT, Windows 2000 hasta SP4, Windows XP hasta SP1, y Windows 2003 permite a atacantes remotos ejecutar código de su elección mediante el campo de longitud AnimationHeaderBlock, lo que conduce a un desbordamiento de búfer basado en la pila. • https://www.exploit-db.com/exploits/771 https://www.exploit-db.com/exploits/765 http://eeye.com/html/research/advisories/AD20050111.html http://marc.info/?l=bugtraq&m=110547079218397&w=2 http://marc.info/?l=bugtraq&m=110556975827760&w=2 http://www.securityfocus.com/bid/12233 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-002 https://exchange.xforce.ibmcloud.com/vulnerabilities/18879 •
CVSS: 7.5EPSS: 96%CPEs: 49EXPL: 1CVE-2005-0045 – Microsoft Windows - 'SMB' Transaction Response Handling (MS05-011)
https://notcve.org/view.php?id=CVE-2005-0045
The Server Message Block (SMB) implementation for Windows NT 4.0, 2000, XP, and Server 2003 does not properly validate certain SMB packets, which allows remote attackers to execute arbitrary code via Transaction responses containing (1) Trans or (2) Trans2 commands, aka the "Server Message Block Vulnerability," and as demonstrated using Trans2 FIND_FIRST2 responses with large file name length fields. • https://www.exploit-db.com/exploits/1065 http://marc.info/?l=bugtraq&m=110792638401852&w=2 http://marc.info/?l=bugtraq&m=111040962600205&w=2 http://marc.info/?l=ntbugtraq&m=110795643831169&w=2 http://www.kb.cert.org/vuls/id/652537 http://www.securityfocus.com/bid/12484 http://www.us-cert.gov/cas/techalerts/TA05-039A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-011 https://exchange.xforce.ibmcloud.com/vulnerabilities/19089 https& •