Published: 02/05/2005 Updated: 30/04/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Subscribe to Windows 2003 Server

The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote malicious users to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host (MSHTA), as demonstrated using a Microsoft Word document.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 2003 server standard
microsoft windows 2003 server web
microsoft windows xp
microsoft windows 2000
microsoft windows 98
microsoft windows 98se
microsoft windows me
microsoft windows 2003 server enterprise
microsoft windows 2003 server r2

/* Changed date in db to place it on the main page * instead of it being bumped off /str0ke */ /*++ MS05-016 POC Made By ZwelL zwell@sohucom 2005413 All information from : wwwsecurityfocusnet/archive/1/395563/2005-04-10/2005-04-16/0 You need make a hta file to use it Like: <script language="VBScript"> ...

NVD-CWE-Other http://www.idefense.com/application/poi/display?id=231&type=vulnerabilities http://www.securiteam.com/exploits/5YP0T0AFFW.html http://www.securityfocus.com/bid/13132 http://www.vupen.com/english/advisories/2005/0335 http://marc.info/?l=bugtraq&m=111755356016155&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A587 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A573 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4710 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A407 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3456 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2184 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-016 https://nvd.nist.gov https://www.exploit-db.com/exploits/938/https://www.kb.cert.org/vuls/id/673051

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-0063

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect