Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-0054 | First vendor Publication | 2005-05-02 |
Vendor | Cve | Last vendor Modification | 2021-07-23 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 5.1 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | High |
Cvss Expoit Score | 4.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0054 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:1308 | |||
Oval ID: | oval:org.mitre.oval:def:1308 | ||
Title: | IE5.01,SP4 Security Zone Restriction Bypass Vulnerability | ||
Description: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2005-0054 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:1736 | |||
Oval ID: | oval:org.mitre.oval:def:1736 | ||
Title: | IE5.01,SP3 Security Zone Restriction Bypass Vulnerability | ||
Description: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2005-0054 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:3060 | |||
Oval ID: | oval:org.mitre.oval:def:3060 | ||
Title: | IE6 for Server 2003 Security Zone Restriction Bypass Vulnerability | ||
Description: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2005-0054 | Version: | 5 |
Platform(s): | Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:3196 | |||
Oval ID: | oval:org.mitre.oval:def:3196 | ||
Title: | IE6.0,SP2 Security Zone Restriction Bypass Vulnerability | ||
Description: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2005-0054 | Version: | 4 |
Platform(s): | Microsoft Windows XP | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:3586 | |||
Oval ID: | oval:org.mitre.oval:def:3586 | ||
Title: | IE6.0,SP1 Security Zone Restriction Bypass Vulnerability | ||
Description: | Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2005-0054 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 | |
Application | 2 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
13605 | Microsoft IE URL Decoding Zone Spoofing Code Execution Windows contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to Internet Explorer accepting URLs with % in the hostname, which allows an attacker to use multiple encoding to trick IE into running untrusted code in the My Computer Zone. This may allow an attacker to execute arbitrary code from a remote host. |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Shell.Explorer ActiveX Object Access RuleID : 4166 - Revision : 10 - Type : WEB-ACTIVEX |
2014-01-10 | Microsoft Internet Explorer Image Control 1.0 ActiveX object access RuleID : 4165 - Revision : 12 - Type : BROWSER-PLUGINS |
2014-01-10 | Microsoft Internet Explorer CDF cross-domain scripting attempt RuleID : 17411 - Revision : 13 - Type : BROWSER-IE |
2014-01-10 | Microsoft Internet Explorer Shell.Explorer 2 ActiveX clsid access RuleID : 15122 - Revision : 15 - Type : BROWSER-PLUGINS |
2014-01-10 | Shell.Explorer 2 ActiveX function call unicode access RuleID : 15113 - Revision : 6 - Type : WEB-ACTIVEX |
2014-01-10 | Microsoft Internet Explorer Shell.Explorer 2 ActiveX function call access RuleID : 15112 - Revision : 12 - Type : BROWSER-PLUGINS |
2014-01-10 | Shell.Explorer 2 ActiveX clsid unicode access RuleID : 15111 - Revision : 6 - Type : WEB-ACTIVEX |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-07-27 00:24:36 |
|
2021-07-24 01:44:14 |
|
2021-07-24 01:01:51 |
|
2021-07-23 17:24:40 |
|
2021-05-04 12:02:43 |
|
2021-04-22 01:02:55 |
|
2020-05-23 00:16:16 |
|
2018-10-13 00:22:30 |
|
2018-05-03 09:19:26 |
|
2017-07-11 12:01:47 |
|
2016-10-18 12:01:33 |
|
2016-04-26 13:13:39 |
|
2013-05-11 11:19:40 |
|