Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-0048

Published: 02/05/2005 Updated: 30/04/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 765
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Microsoft

Vulnerability Summary

Microsoft Windows XP SP2 and previous versions, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows xp

microsoft windows 2000

Exploits

Exploit DB: Microsoft Windows - Malformed IP Options Denial of Service (MS05-019)
/* ecl-winipdosc - 16/04/05 * Yuri Gushin <yuri@eclipseorgil> * Alex Behar <alex@eclipseorgil> * * This one was actually interesting, an off-by-one by our beloved * M$ :) * * When processing an IP packet with an option size (2nd byte after * the option) of 39, it will crash - since the maximum available * size is 40 for th ...
Exploit DB: Microsoft Windows XP/2000 - Internet Protocol Validation Remote Code Execution (2)
source: wwwsecurityfocuscom/bid/13116/info Microsoft Windows is reported prone to a remote code execution vulnerability It is reported that the vulnerability manifests when an affected Microsoft platform receives and processes an especially malformed TCP/IP packet Reports indicate that the immediate consequences of exploitation of th ...
Exploit DB: Microsoft Windows XP/2000 - Internet Protocol Validation Remote Code Execution (1)
source: wwwsecurityfocuscom/bid/13116/info Microsoft Windows is reported prone to a remote code execution vulnerability It is reported that the vulnerability manifests when an affected Microsoft platform receives and processes an especially malformed TCP/IP packet Reports indicate that the immediate consequences of exploitation of this ...

References

NVD-CWE-Otherhttp://xforce.iss.net/xforce/alerts/id/192http://www.us-cert.gov/cas/techalerts/TA05-102A.htmlhttp://www.kb.cert.org/vuls/id/233754https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4549https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3824https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1744https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019https://nvd.nist.govhttps://www.exploit-db.com/exploits/942/https://www.kb.cert.org/vuls/id/233754
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook