Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-0416 | First vendor Publication | 2005-04-27 |
Vendor | Cve | Last vendor Modification | 2019-04-30 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allows remote attackers to execute arbitrary code via the AnimationHeaderBlock length field, which leads to a stack-based buffer overflow. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0416 |
CPE : Common Platform Enumeration
ExploitDB Exploits
id | Description |
---|---|
2010-08-12 | Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (HTTP) |
2005-01-24 | MS Internet Explorer .ANI files handling Downloader Exploit (MS05-002) |
2005-01-22 | MS Internet Explorer .ANI files handling Universal Exploit (MS05-002) |
2005-01-12 | MS Internet Explorer .ANI Remote Stack Overflow (0.2) |
OpenVAS Exploits
Date | Description |
---|---|
2010-07-08 | Name : Microsoft Windows GDI Multiple Vulnerabilities (925902) File : nvt/ms07-017.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
16430 | Microsoft Windows Animated Cursor (ANI) Capability AnimationHeaderBlock Lengt... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2005-01-19 | IAVM : 2005-A-0001 - Multiple Vulnerabilities in Microsoft Windows Severity : Category I - VMSKEY : V0005996 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Internet Explorer ANI file parsing buffer overflow attempt RuleID : 3079-community - Revision : 25 - Type : BROWSER-IE |
2014-01-10 | Microsoft Internet Explorer ANI file parsing buffer overflow attempt RuleID : 3079 - Revision : 25 - Type : BROWSER-IE |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2005-01-11 | Name : Arbitrary code can be executed on the remote host through the web or email cl... File : smb_nt_ms05-002.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-02 01:02:54 |
|
2024-02-01 12:01:39 |
|
2023-09-05 12:02:45 |
|
2023-09-05 01:01:30 |
|
2023-09-02 12:02:47 |
|
2023-09-02 01:01:30 |
|
2023-08-12 12:03:20 |
|
2023-08-12 01:01:31 |
|
2023-08-11 12:02:53 |
|
2023-08-11 01:01:33 |
|
2023-08-06 12:02:41 |
|
2023-08-06 01:01:31 |
|
2023-08-04 12:02:45 |
|
2023-08-04 01:01:32 |
|
2023-07-14 12:02:43 |
|
2023-07-14 01:01:32 |
|
2023-03-29 01:02:48 |
|
2023-03-28 12:01:37 |
|
2022-10-11 12:02:26 |
|
2022-10-11 01:01:24 |
|
2021-05-04 12:02:47 |
|
2021-04-22 01:02:59 |
|
2020-05-23 00:16:21 |
|
2019-05-09 12:01:30 |
|
2019-04-30 21:19:19 |
|
2018-10-13 00:22:30 |
|
2017-07-11 12:01:50 |
|
2016-10-18 12:01:35 |
|
2014-02-17 10:30:07 |
|
2013-05-11 11:21:24 |
|