First published: Tue Jun 14 2005(Updated: )
Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows Server 2003 | =64-bit | |
Microsoft Windows Terminal Services | =sp1 | |
Microsoft Windows Server 2003 | =web-sp1_beta_1 | |
Microsoft Windows XP | =sp1 | |
Microsoft Windows Server 2003 | =web | |
Microsoft Windows Server 2003 | =enterprise | |
Microsoft Windows XP | ||
Microsoft Windows Server 2003 | =enterprise_64-bit | |
Microsoft Windows Server 2003 | =enterprise-sp1_beta_1 | |
Microsoft Windows XP | =gold | |
Microsoft Windows 2000 | ||
Microsoft Windows | ||
Microsoft Windows XP | ||
Microsoft Windows Server 2003 | =standard_64-bit | |
Microsoft Windows Server 2003 | =datacenter_64-bit-sp1 | |
Microsoft Windows 2000 | =sp4 | |
Microsoft Windows XP | =sp2 | |
Microsoft Windows Server 2003 | =datacenter_64-bit-sp1_beta_1 | |
Microsoft Windows XP | =sp1 | |
Microsoft Windows XP | ||
Microsoft Windows XP | =sp1 | |
Microsoft Windows 98 | ||
Microsoft Windows 2000 | =sp2 | |
Microsoft Windows Server 2003 | =standard-sp1_beta_1 | |
Microsoft Windows XP | =sp1 | |
Microsoft Windows Server 2003 | =r2-sp1 | |
Microsoft Windows Server 2003 | =enterprise_64-bit-sp1 | |
Microsoft Windows Terminal Services | =sp3 | |
Microsoft Windows Server 2003 | =r2 | |
Microsoft Windows Server 2003 | =r2-sp1_beta_1 | |
Microsoft Windows Server 2003 | =web-sp1 | |
Microsoft Windows Server 2003 | =r2 | |
Microsoft Windows 2000 | =sp1 | |
Microsoft Windows XP | =sp2 | |
Microsoft Windows XP | ||
Microsoft Windows Server 2003 | =standard-sp1 | |
Microsoft Windows | ||
Microsoft Windows Server 2003 | =enterprise-sp1 | |
Microsoft Windows 2000 | =sp4 | |
Microsoft Windows XP | =sp1 | |
Microsoft Windows Server 2003 | =standard | |
Microsoft Windows XP | =sp2 | |
Microsoft Windows Terminal Services | ||
Microsoft Windows Server 2003 | =enterprise_64-bit-sp1_beta_1 | |
Microsoft Windows 9x | =gold | |
Microsoft Windows Terminal Services | =sp2 | |
Microsoft Windows Server 2003 | =r2 | |
Microsoft Windows XP | =gold | |
Microsoft Windows 2000 | =sp3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-1212 has a medium severity rating, allowing remote attackers to execute arbitrary code due to a buffer overflow vulnerability.
To mitigate CVE-2005-1212, users should apply the latest security updates provided by Microsoft for affected software.
CVE-2005-1212 affects various versions of Microsoft Windows, including Windows XP, Windows 2003 Server, and Windows 2000 with specific service packs.
CVE-2005-1212 can be exploited by a remote attacker through a specially crafted bookmark link file with a long User field.
Exploitation of CVE-2005-1212 can lead to remote code execution, allowing attackers to gain control over the affected system.