CVE-2005-1935

Опубликовано: 13 июн. 2005

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Heap-based buffer overflow in the BERDecBitString function in Microsoft ASN.1 library (MSASN1.DLL) allows remote attackers to execute arbitrary code via nested constructed bit strings, which leads to a realloc of a non-null pointer and causes the function to overwrite previously freed memory, as demonstrated using a SPNEGO token with a constructed bit string during HTTP authentication, and a different vulnerability than CVE-2003-0818. NOTE: the researcher has claimed that MS:MS04-007 fixes this issue.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*:*:*

cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:*

cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp1:tablet_pc:*:*:*:*:*

EPSS

Процентиль: 97%

0.32706

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7wp6-vjqc-vxjv

github

почти 4 года назад