exploitDog

CVE-2005-3172

Опубликовано: 06 окт. 2005

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The WideCharToMultiByte function in Microsoft Windows 2000 before Update Rollup 1 for SP4 does not properly convert strings with Japanese composite characters in the last character, which could prevent the string from being null terminated and lead to data corruption or enable buffer overflow attacks.

Ссылки

http://support.microsoft.com/kb/824867
Patch
Vendor Advisory
http://support.microsoft.com/kb/900345
Patch
Vendor Advisory
http://support.microsoft.com/kb/824867
Patch
Vendor Advisory
http://support.microsoft.com/kb/900345
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:fr:*:*:*:*

EPSS

Процентиль: 93%

0.10232

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gp5h-cmjc-5gj4

github

почти 4 года назад

The WideCharToMultiByte function in Microsoft Windows 2000 before Update Rollup 1 for SP4 does not properly convert strings with Japanese composite characters in the last character, which could prevent the string from being null terminated and lead to data corruption or enable buffer overflow attacks.

EPSS

Процентиль: 93%

0.10232

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other