var-200503-0010
Vulnerability from variot
Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016). Microsoft Windows does not adequately validate IP options, allowing an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service. An attacker could take complete control of a vulnerable system. When a packet of this sort is received, an infinite loop is initiated and the affected system halts. This is known to affect Windows 95, Windows NT 4.0 up to SP3, Windows Server 2003, Windows XP SP2, Cisco IOS devices & Catalyst switches, and HP-UX up to 11.00. It is noted that on Windows Server 2003 and XP SP2, the TCP and IP checksums must be correct to trigger the issue. **Update: It is reported that Microsoft platforms are also prone to this vulnerability. The vendor reports that network routers may not route malformed TCP/IP packets used to exploit this issue. As a result, an attacker may have to discover a suitable route to a target computer, or reside on the target network segment itself before exploitation is possible.
Want a new IT Security job?
Vacant positions at Secunia: http://secunia.com/secunia_vacancies/
TITLE: Microsoft Exchange SMTP Service Extended Verb Request Buffer Overflow
SECUNIA ADVISORY ID: SA14920
VERIFY ADVISORY: http://secunia.com/advisories/14920/
CRITICAL: Highly critical
IMPACT: System access
WHERE:
From remote
SOFTWARE: Microsoft Exchange Server 2000 http://secunia.com/product/41/ Microsoft Exchange Server 2003 http://secunia.com/product/1828/
DESCRIPTION: ISS X-Force has reported a vulnerability in Microsoft Exchange Server, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the SMTP service within the handling of a certain extended verb request. This can be exploited to cause a heap-based buffer overflow by connecting to the SMTP service and issuing a specially crafted command.
Successful exploitation allows execution of arbitrary code with the privileges of the SMTP service (by default "Local System"). Instead, this requires permissions usually only granted to other Exchange servers in a domain.
SOLUTION: Apply patches.
Microsoft Exchange 2000 Server (requires SP3): http://www.microsoft.com/downloads/details.aspx?FamilyId=2A2AF17E-2E4A-4479-8AC9-B5544EA0BD66
Microsoft Exchange Server 2003: http://www.microsoft.com/downloads/details.aspx?FamilyId=97F409EB-C8D0-4C94-A67B-5945E26C9267
Microsoft Exchange Server 2003 (requires SP1): http://www.microsoft.com/downloads/details.aspx?FamilyId=35BCE74A-E84A-4035-BF18-196368F032CC
The following versions are not affected: * Microsoft Exchange Server 5.5 SP4 * Microsoft Exchange Server 5.0 SP2
PROVIDED AND/OR DISCOVERED BY: Mark Dowd and Ben Layer, ISS X-Force.
ORIGINAL ADVISORY: MS05-021 (KB894549): http://www.microsoft.com/technet/security/Bulletin/MS05-021.mspx
ISS X-Force: http://xforce.iss.net/xforce/alerts/id/193
About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-200503-0010", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": null, "scope": null, "trust": 2.4, "vendor": "microsoft", "version": null }, { "model": "windows 2003 server", "scope": "eq", "trust": 1.6, "vendor": "microsoft", "version": "r2" }, { "model": "windows xp", "scope": "eq", "trust": 1.0, "vendor": "microsoft", "version": "*" }, { "model": "windows server 2003", "scope": "eq", "trust": 0.8, "vendor": "microsoft", "version": "none" }, { "model": "windows server 2003", "scope": "eq", "trust": 0.8, "vendor": "microsoft", "version": "(itanium)" }, { "model": "windows server 2003", "scope": "eq", "trust": 0.8, "vendor": "microsoft", "version": "(x64)" }, { "model": "windows xp", "scope": "eq", "trust": 0.8, "vendor": "microsoft", "version": "(x64)" }, { "model": "windows xp", "scope": "eq", "trust": 0.8, "vendor": "microsoft", "version": "sp3" }, { "model": "windows xp home sp1", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "bsd/os", "scope": "eq", "trust": 0.6, "vendor": "bsdi", "version": "2.1" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.01" }, { "model": "windows nt workstation sp3", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "netbsd", "scope": "ne", "trust": 0.6, "vendor": "netbsd", "version": "1.3.1" }, { "model": "kernel", "scope": "eq", "trust": 0.6, "vendor": "linux", "version": "2.0.31" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.2.5" }, { "model": "ios aa", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.15" }, { "model": "ios", "scope": "eq", "trust": 0.6, "vendor": "cisco", "version": "11.0" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.10" }, { "model": "freebsd", "scope": "ne", "trust": 0.6, "vendor": "freebsd", "version": "2.2.6" }, { "model": "netbsd", "scope": "eq", "trust": 0.6, "vendor": "netbsd", "version": "1.0" }, { "model": "windows xp professional", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "windows nt enterprise server sp4", "scope": "ne", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "bsd/os", "scope": "ne", "trust": 0.6, "vendor": "bsdi", "version": "3.0" }, { "model": "windows server enterprise edition sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.34" }, { "model": "windows nt workstation sp2", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "ios f", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.2.4" }, { "model": "ios bt", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.0.12" }, { "model": "windows nt workstation sp4", "scope": "ne", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows server enterprise edition itanium", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20030" }, { "model": "windows xp tablet pc edition sp1", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "ios ia", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.15" }, { "model": "netbsd", "scope": "ne", "trust": 0.6, "vendor": "netbsd", "version": "1.3" }, { "model": "windows xp tablet pc edition", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "bsd/os", "scope": "ne", "trust": 0.6, "vendor": "bsdi", "version": "3.1" }, { "model": "windows server enterprise edition sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.1.x" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.2" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.1" }, { "model": "windows xp 64-bit edition", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "10.3.16" }, { "model": "windows server enterprise edition itanium sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.38" }, { "model": "windows server standard edition sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "netware", "scope": "eq", "trust": 0.6, "vendor": "novell", "version": "4.1" }, { "model": "windows server standard edition sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "bsd/os", "scope": "eq", "trust": 0.6, "vendor": "bsdi", "version": "2.0" }, { "model": "windows xp media center edition", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.36" }, { "model": "windows xp media center edition sp2", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "windows nt workstation", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "ios", "scope": "eq", "trust": 0.6, "vendor": "cisco", "version": "10.3" }, { "model": "ios bt", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.0.17" }, { "model": "windows server datacenter edition itanium", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20030" }, { "model": "freebsd", "scope": "ne", "trust": 0.6, "vendor": "freebsd", "version": "3.x" }, { "model": "windows nt enterprise server sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows server datacenter edition sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "windows nt enterprise server sp3", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.2.10" }, { "model": "windows nt terminal server sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.1.5" }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.7" }, { "model": "bsd/os", "scope": "eq", "trust": 0.6, "vendor": "bsdi", "version": "2.0.1" }, { "model": "windows server web edition sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "windows nt enterprise server sp2", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows xp tablet pc edition sp2", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "windows server enterprise edition itanium sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "ios", "scope": "eq", "trust": 0.6, "vendor": "cisco", "version": "11.2" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.2.3" }, { "model": "bsd/os", "scope": "eq", "trust": 0.6, "vendor": "bsdi", "version": "1.1" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.33" }, { "model": "windows nt terminal server sp3", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "open desktop", "scope": "eq", "trust": 0.6, "vendor": "sco", "version": "3.0" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.1.6.1" }, { "model": "ios ia", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.9" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.16" }, { "model": "netbsd", "scope": "ne", "trust": 0.6, "vendor": "netbsd", "version": "1.3.2" }, { "model": "ios aa", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.7" }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.0.17" }, { "model": "windows server datacenter edition itanium sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "windows nt enterprise server", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows server datacenter edition", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "windows nt terminal server", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "9.0" }, { "model": "unixware", "scope": "eq", "trust": 0.6, "vendor": "sco", "version": "2.1" }, { "model": "windows xp professional sp1", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "freebsd", "scope": "ne", "trust": 0.6, "vendor": "freebsd", "version": "2.2.2" }, { "model": "windows server standard edition", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.2.4" }, { "model": "ios a", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "10.3.19" }, { "model": "netbsd", "scope": "eq", "trust": 0.6, "vendor": "netbsd", "version": "1.1" }, { "model": "ios f1", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.2.4" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.35" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "11.0" }, { "model": "windows xp home", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "cmw+", "scope": "eq", "trust": 0.6, "vendor": "sco", "version": "3.0" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.2" }, { "model": "bsd/os", "scope": "ne", "trust": 0.6, "vendor": "bsdi", "version": "4.0" }, { "model": "windows server web edition", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.1" }, { "model": "ios ca", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.15" }, { "model": "windows xp media center edition sp1", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "ios/700", "scope": "eq", "trust": 0.6, "vendor": "cisco", "version": "1.0" }, { "model": "kernel", "scope": "eq", "trust": 0.6, "vendor": "linux", "version": "2.0.30" }, { "model": "sunos", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "4.1.4" }, { "model": "ios", "scope": "eq", "trust": 0.6, "vendor": "cisco", "version": "11.1" }, { "model": "windows nt server sp3", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "95" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.2.10" }, { "model": "catalyst supervisor software", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "29xx2.4.401" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.37" }, { "model": "sunos u1", "scope": "eq", "trust": 0.6, "vendor": "sun", "version": "4.1.3" }, { "model": "windows nt", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "3.5.1" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.24" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.0" }, { "model": "atm switch", "scope": "eq", "trust": 0.6, "vendor": "marconi", "version": "6.1.1" }, { "model": "kernel", "scope": "ne", "trust": 0.6, "vendor": "linux", "version": "2.0.32" }, { "model": "windows nt server sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt terminal server sp4", "scope": "ne", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows xp professional sp2", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "windows xp home sp2", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "catalyst supervisor software", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "29xx2.1.1102" }, { "model": "netbsd", "scope": "eq", "trust": 0.6, "vendor": "netbsd", "version": "1.2.1" }, { "model": "windows xp 64-bit edition sp1", "scope": null, "trust": 0.6, "vendor": "microsoft", "version": null }, { "model": "open server", "scope": "eq", "trust": 0.6, "vendor": "sco", "version": "5.0" }, { "model": "windows xp 64-bit edition version sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "freebsd", "scope": "ne", "trust": 0.6, "vendor": "freebsd", "version": "2.2.8" }, { "model": "windows nt workstation sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt server sp2", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "ios p", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.2.9" }, { "model": "atm switch", "scope": "eq", "trust": 0.6, "vendor": "marconi", "version": "7.0.1" }, { "model": "windows server datacenter edition sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.2.4" }, { "model": "windows nt server sp4", "scope": "ne", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt server", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "ios", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.15" }, { "model": "windows server enterprise edition", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.1.6" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.20" }, { "model": "bsd/os", "scope": "ne", "trust": 0.6, "vendor": "bsdi", "version": "4.0.1" }, { "model": "windows xp 64-bit edition version", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "ios ca", "scope": "ne", "trust": 0.6, "vendor": "cisco", "version": "11.1.7" }, { "model": "windows server datacenter edition itanium sp1", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "2003" }, { "model": "netbsd", "scope": "eq", "trust": 0.6, "vendor": "netbsd", "version": "1.2" }, { "model": "windows nt terminal server sp2", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "4.0" }, { "model": "freebsd", "scope": "eq", "trust": 0.6, "vendor": "freebsd", "version": "2.1x" }, { "model": "windows server web edition sp1 beta", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "20031" }, { "model": "hp-ux", "scope": "eq", "trust": 0.6, "vendor": "hp", "version": "10.30" }, { "model": "windows xp", "scope": "eq", "trust": 0.6, "vendor": "microsoft", "version": "sp2" }, { "model": "windows server standard edition", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "2003x64" }, { "model": "modular messaging", "scope": "eq", "trust": 0.3, "vendor": "avaya", "version": "3.0" }, { "model": "windows xp professional edition", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "x64" }, { "model": "windows xp", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "0" }, { "model": "windows xp embedded sp1", "scope": null, "trust": 0.3, "vendor": "microsoft", "version": null }, { "model": "windows xp embedded", "scope": null, "trust": 0.3, "vendor": "microsoft", "version": null }, { "model": "windows server enterprise edition", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "2003x64" }, { "model": "windows xp gold", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "0" }, { "model": "windows server datacenter edition", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "2003x64" }, { "model": "windows nt sp5", "scope": "ne", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp1", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp3", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp2", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp3 alpha", "scope": "eq", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp4", "scope": "ne", "trust": 0.3, "vendor": "microsoft", "version": "4.0" }, { "model": "windows nt sp6", "scope": "ne", "trust": 0.3, "vendor": "microsoft", "version": "4.0" } ], "sources": [ { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "CNNVD", "id": "CNNVD-200503-048" }, { "db": "NVD", "id": "CVE-2005-0688" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2005-0688" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Dejan Levaja dejan@levaja.com", "sources": [ { "db": "CNNVD", "id": "CNNVD-200503-048" } ], "trust": 0.6 }, "cve": "CVE-2005-0688", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "acInsufInfo": false, "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "NVD", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "exploitabilityScore": 10.0, "impactScore": 2.9, "integrityImpact": "NONE", "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "trust": 1.0, "userInteractionRequired": false, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, { "acInsufInfo": null, "accessComplexity": "Low", "accessVector": "Network", "authentication": "None", "author": "NVD", "availabilityImpact": "Partial", "baseScore": 5.0, "confidentialityImpact": "None", "exploitabilityScore": null, "id": "CVE-2005-0688", "impactScore": null, "integrityImpact": "None", "obtainAllPrivilege": null, "obtainOtherPrivilege": null, "obtainUserPrivilege": null, "severity": "Medium", "trust": 0.8, "userInteractionRequired": null, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" } ], "cvssV3": [], "severity": [ { "author": "NVD", "id": "CVE-2005-0688", "trust": 1.8, "value": "MEDIUM" }, { "author": "CARNEGIE MELLON", "id": "VU#396645", "trust": 0.8, "value": "12.15" }, { "author": "CARNEGIE MELLON", "id": "VU#233754", "trust": 0.8, "value": "12.29" }, { "author": "CARNEGIE MELLON", "id": "VU#275193", "trust": 0.8, "value": "36.15" }, { "author": "CNNVD", "id": "CNNVD-200503-048", "trust": 0.6, "value": "MEDIUM" } ] } ], "sources": [ { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "CNNVD", "id": "CNNVD-200503-048" }, { "db": "NVD", "id": "CVE-2005-0688" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the \"Land\" vulnerability (CVE-1999-0016). Microsoft Windows does not adequately validate IP options, allowing an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service. An attacker could take complete control of a vulnerable system. When a packet of this sort is received, an infinite loop is initiated and the affected system halts. This is known to affect Windows 95, Windows NT 4.0 up to SP3, Windows Server 2003, Windows XP SP2, Cisco IOS devices \u0026amp; Catalyst switches, and HP-UX up to 11.00. \nIt is noted that on Windows Server 2003 and XP SP2, the TCP and IP checksums must be correct to trigger the issue. \n**Update: It is reported that Microsoft platforms are also prone to this vulnerability. The vendor reports that network routers may not route malformed TCP/IP packets used to exploit this issue. As a result, an attacker may have to discover a suitable route to a target computer, or reside on the target network segment itself before exploitation is possible. \n----------------------------------------------------------------------\n\nWant a new IT Security job?\n\nVacant positions at Secunia:\nhttp://secunia.com/secunia_vacancies/\n\n----------------------------------------------------------------------\n\nTITLE:\nMicrosoft Exchange SMTP Service Extended Verb Request Buffer Overflow\n\nSECUNIA ADVISORY ID:\nSA14920\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/14920/\n\nCRITICAL:\nHighly critical\n\nIMPACT:\nSystem access\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nMicrosoft Exchange Server 2000\nhttp://secunia.com/product/41/\nMicrosoft Exchange Server 2003\nhttp://secunia.com/product/1828/\n\nDESCRIPTION:\nISS X-Force has reported a vulnerability in Microsoft Exchange\nServer, which can be exploited by malicious people to compromise a\nvulnerable system. \n\nThe vulnerability is caused due to a boundary error in the SMTP\nservice within the handling of a certain extended verb request. This\ncan be exploited to cause a heap-based buffer overflow by connecting\nto the SMTP service and issuing a specially crafted command. \n\nSuccessful exploitation allows execution of arbitrary code with the\nprivileges of the SMTP service (by default \"Local System\"). Instead, this requires permissions\nusually only granted to other Exchange servers in a domain. \n\nSOLUTION:\nApply patches. \n\nMicrosoft Exchange 2000 Server (requires SP3):\nhttp://www.microsoft.com/downloads/details.aspx?FamilyId=2A2AF17E-2E4A-4479-8AC9-B5544EA0BD66\n\nMicrosoft Exchange Server 2003:\nhttp://www.microsoft.com/downloads/details.aspx?FamilyId=97F409EB-C8D0-4C94-A67B-5945E26C9267\n\nMicrosoft Exchange Server 2003 (requires SP1):\nhttp://www.microsoft.com/downloads/details.aspx?FamilyId=35BCE74A-E84A-4035-BF18-196368F032CC\n\nThe following versions are not affected:\n* Microsoft Exchange Server 5.5 SP4\n* Microsoft Exchange Server 5.0 SP2\n\nPROVIDED AND/OR DISCOVERED BY:\nMark Dowd and Ben Layer, ISS X-Force. \n\nORIGINAL ADVISORY:\nMS05-021 (KB894549):\nhttp://www.microsoft.com/technet/security/Bulletin/MS05-021.mspx\n\nISS X-Force:\nhttp://xforce.iss.net/xforce/alerts/id/193\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n", "sources": [ { "db": "NVD", "id": "CVE-2005-0688" }, { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" }, { "db": "PACKETSTORM", "id": "37141" } ], "trust": 4.41 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2005-0688", "trust": 3.0 }, { "db": "SECUNIA", "id": "14512", "trust": 2.4 }, { "db": "USCERT", "id": "TA05-102A", "trust": 1.6 }, { "db": "SECUNIA", "id": "22341", "trust": 1.6 }, { "db": "VUPEN", "id": "ADV-2006-3983", "trust": 1.6 }, { "db": "BID", "id": "2666", "trust": 1.1 }, { "db": "SECUNIA", "id": "14920", "trust": 0.9 }, { "db": "OSVDB", "id": "14578", "trust": 0.8 }, { "db": "XF", "id": "19593", "trust": 0.8 }, { "db": "CERT/CC", "id": "VU#396645", "trust": 0.8 }, { "db": "BID", "id": "13116", "trust": 0.8 }, { "db": "SECTRACK", "id": "1013686", "trust": 0.8 }, { "db": "CERT/CC", "id": "VU#233754", "trust": 0.8 }, { "db": "OSVDB", "id": "15467", "trust": 0.8 }, { "db": "CERT/CC", "id": "VU#275193", "trust": 0.8 }, { "db": "JVNDB", "id": "JVNDB-2005-000167", "trust": 0.8 }, { "db": "OVAL", "id": "OVAL:ORG.MITRE.OVAL:DEF:4978", "trust": 0.6 }, { "db": "OVAL", "id": "OVAL:ORG.MITRE.OVAL:DEF:1288", "trust": 0.6 }, { "db": "OVAL", "id": "OVAL:ORG.MITRE.OVAL:DEF:482", "trust": 0.6 }, { "db": "OVAL", "id": "OVAL:ORG.MITRE.OVAL:DEF:1685", "trust": 0.6 }, { "db": "MS", "id": "MS06-064", "trust": 0.6 }, { "db": "MS", "id": "MS05-019", "trust": 0.6 }, { "db": "HP", "id": "SSRT061264", "trust": 0.6 }, { "db": "BUGTRAQ", "id": "20050305 WINDOWS SERVER 2003 AND XP SP2 LAND ATTACK VULNERABILITY", "trust": 0.6 }, { "db": "CNNVD", "id": "CNNVD-200503-048", "trust": 0.6 }, { "db": "BID", "id": "13658", "trust": 0.3 }, { "db": "PACKETSTORM", "id": "37141", "trust": 0.1 } ], "sources": [ { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "PACKETSTORM", "id": "37141" }, { "db": "CNNVD", "id": "CNNVD-200503-048" }, { "db": "NVD", "id": "CVE-2005-0688" } ] }, "id": "VAR-200503-0010", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VARIoT devices database", "id": null } ], "trust": 0.33667661 }, "last_update_date": "2024-07-23T19:39:25.692000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "MS06-064", "trust": 0.8, "url": "http://www.microsoft.com/technet/security/bulletin/ms06-064.mspx" }, { "title": "MS05-019", "trust": 0.8, "url": "http://www.microsoft.com/technet/security/bulletin/ms05-019.mspx" }, { "title": "MS05-019", "trust": 0.8, "url": "http://www.microsoft.com/japan/technet/security/bulletin/ms05-019.mspx" }, { "title": "MS06-064", "trust": 0.8, "url": "http://www.microsoft.com/japan/technet/security/bulletin/ms06-064.mspx" } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2005-000167" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "NVD-CWE-Other", "trust": 1.0 } ], "sources": [ { "db": "NVD", "id": "CVE-2005-0688" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 2.8, "url": "http://www.microsoft.com/technet/security/bulletin/ms05-019.mspx" }, { "trust": 1.6, "url": "http://secunia.com/advisories/14512/" }, { "trust": 1.6, "url": "http://www.us-cert.gov/cas/techalerts/ta05-102a.html" }, { "trust": 1.6, "url": "http://secunia.com/advisories/22341" }, { "trust": 1.0, "url": "http://marc.info/?l=bugtraq\u0026m=111005099504081\u0026w=2" }, { "trust": 1.0, "url": "http://www.securityfocus.com/archive/1/449179/100/0/threaded" }, { "trust": 1.0, "url": "http://www.vupen.com/english/advisories/2006/3983" }, { "trust": 1.0, "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019" }, { "trust": 1.0, "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064" }, { "trust": 1.0, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1288" }, { "trust": 1.0, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1685" }, { "trust": 1.0, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a482" }, { "trust": 1.0, "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a4978" }, { "trust": 0.9, "url": "http://xforce.iss.net/xforce/alerts/id/193" }, { "trust": 0.9, "url": "http://www.microsoft.com/technet/security/bulletin/ms05-021.mspx" }, { "trust": 0.9, "url": "http://secunia.com/advisories/14920/" }, { "trust": 0.9, "url": "http://www.microsoft.com/technet/security/bulletin/ms06-064.mspx" }, { "trust": 0.8, "url": "http://secunia.com/advisories/14512" }, { "trust": 0.8, "url": "http://www.securityfocus.com/bid/2666 " }, { "trust": 0.8, "url": "http://xforce.iss.net/xforce/xfdb/19593" }, { "trust": 0.8, "url": "http://osvdb.org/displayvuln.php?osvdb_id=14578" }, { "trust": 0.8, "url": "http://xforce.iss.net/xforce/alerts/id/192" }, { "trust": 0.8, "url": "http://www.iana.org/assignments/ip-parameters" }, { "trust": 0.8, "url": "http://www.securityfocus.com/bid/13116/" }, { "trust": 0.8, "url": "http://securitytracker.com/alerts/2005/apr/1013686.html" }, { "trust": 0.8, "url": "http://www.osvdb.org/displayvuln.php?osvdb_id=15467" }, { "trust": 0.8, "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-0688" }, { "trust": 0.8, "url": "http://www.ipa.go.jp/security/ciadr/vul/20050413-ms05-019.html" }, { "trust": 0.8, "url": "http://www.jpcert.or.jp/wr/2005/wr051601.txt" }, { "trust": 0.8, "url": "http://jvn.jp/cert/jvnta05-102a/" }, { "trust": 0.8, "url": "http://jvn.jp/tr/trta05-102a/" }, { "trust": 0.8, "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-0688" }, { "trust": 0.8, "url": "http://www.securiteam.com/windowsntfocus/5pp0720f5u.html" }, { "trust": 0.6, "url": "http://support.microsoft.com/support/kb/articles/q165/0/05.asp" }, { "trust": 0.6, "url": "http://support.microsoft.com/support/kb/articles/q177/5/39.asp" }, { "trust": 0.6, "url": "http://support.novell.com/cgi-bin/search/tidfinder.cgi?2932511" }, { "trust": 0.6, "url": "http://www.cisco.com/warp/public/770/land-pub.shtml#iosvers" }, { "trust": 0.6, "url": "http://www.securityfocus.com/archive/1/392354" }, { "trust": 0.6, "url": "/archive/1/392642" }, { "trust": 0.6, "url": "/archive/1/393045" }, { "trust": 0.6, "url": "/archive/1/392354" }, { "trust": 0.6, "url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=111005099504081\u0026w=2" }, { "trust": 0.6, "url": "http://www.securityfocus.com/archive/1/archive/1/449179/100/0/threaded" }, { "trust": 0.6, "url": "http://www.frsirt.com/english/advisories/2006/3983" }, { "trust": 0.6, "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:4978" }, { "trust": 0.6, "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:482" }, { "trust": 0.6, "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:1685" }, { "trust": 0.6, "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:1288" }, { "trust": 0.3, "url": "http://support.avaya.com/elmodocs2/security/asa-2006-217.htm" }, { "trust": 0.3, "url": "/archive/1/400188" }, { "trust": 0.1, "url": "http://secunia.com/secunia_security_advisories/" }, { "trust": 0.1, "url": "http://www.microsoft.com/downloads/details.aspx?familyid=35bce74a-e84a-4035-bf18-196368f032cc" }, { "trust": 0.1, "url": "http://secunia.com/about_secunia_advisories/" }, { "trust": 0.1, "url": "http://www.microsoft.com/downloads/details.aspx?familyid=2a2af17e-2e4a-4479-8ac9-b5544ea0bd66" }, { "trust": 0.1, "url": "http://secunia.com/secunia_vacancies/" }, { "trust": 0.1, "url": "http://secunia.com/product/41/" }, { "trust": 0.1, "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org" }, { "trust": 0.1, "url": "http://www.microsoft.com/downloads/details.aspx?familyid=97f409eb-c8d0-4c94-a67b-5945e26c9267" }, { "trust": 0.1, "url": "http://secunia.com/product/1828/" } ], "sources": [ { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "PACKETSTORM", "id": "37141" }, { "db": "CNNVD", "id": "CNNVD-200503-048" }, { "db": "NVD", "id": "CVE-2005-0688" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "CERT/CC", "id": "VU#396645" }, { "db": "CERT/CC", "id": "VU#233754" }, { "db": "CERT/CC", "id": "VU#275193" }, { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" }, { "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "db": "PACKETSTORM", "id": "37141" }, { "db": "CNNVD", "id": "CNNVD-200503-048" }, { "db": "NVD", "id": "CVE-2005-0688" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2005-04-13T00:00:00", "db": "CERT/CC", "id": "VU#396645" }, { "date": "2005-04-12T00:00:00", "db": "CERT/CC", "id": "VU#233754" }, { "date": "2005-04-12T00:00:00", "db": "CERT/CC", "id": "VU#275193" }, { "date": "2005-05-17T00:00:00", "db": "BID", "id": "13658" }, { "date": "1997-11-20T00:00:00", "db": "BID", "id": "2666" }, { "date": "2007-04-01T00:00:00", "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "date": "2005-04-18T07:20:47", "db": "PACKETSTORM", "id": "37141" }, { "date": "1997-11-13T00:00:00", "db": "CNNVD", "id": "CNNVD-200503-048" }, { "date": "2005-03-05T05:00:00", "db": "NVD", "id": "CVE-2005-0688" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2005-04-13T00:00:00", "db": "CERT/CC", "id": "VU#396645" }, { "date": "2005-05-03T00:00:00", "db": "CERT/CC", "id": "VU#233754" }, { "date": "2005-08-02T00:00:00", "db": "CERT/CC", "id": "VU#275193" }, { "date": "2016-07-06T14:40:00", "db": "BID", "id": "13658" }, { "date": "2009-07-11T06:06:00", "db": "BID", "id": "2666" }, { "date": "2007-04-01T00:00:00", "db": "JVNDB", "id": "JVNDB-2005-000167" }, { "date": "2005-10-20T00:00:00", "db": "CNNVD", "id": "CNNVD-200503-048" }, { "date": "2018-10-19T15:31:16.513000", "db": "NVD", "id": "CVE-2005-0688" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "network", "sources": [ { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" } ], "trust": 0.6 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Microsoft Windows vulnerable to DoS via LAND attack", "sources": [ { "db": "CERT/CC", "id": "VU#396645" } ], "trust": 0.8 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Failure to Handle Exceptional Conditions", "sources": [ { "db": "BID", "id": "13658" }, { "db": "BID", "id": "2666" } ], "trust": 0.6 } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.