exploitDog

CVE-2005-2679

Опубликовано: 23 авг. 2005

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a running process.

Ссылки

http://secunia.com/advisories/16525
http://securitytracker.com/id?1014742
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/14616
Exploit
http://www.sysinternals.com/Forum/forum_posts.asp?TID=957&PN=1
http://secunia.com/advisories/16525
http://securitytracker.com/id?1014742
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/14616
Exploit
http://www.sysinternals.com/Forum/forum_posts.asp?TID=957&PN=1

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sysinternals:process_explorer:9.23.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01234

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-76cw-xqr5-8qpf

github

почти 4 года назад

Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a running process.

EPSS

Процентиль: 79%

0.01234

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other