What is the severity of CVE-2005-2120?

CVE-2005-2120 has a critical severity rating due to its potential for remote code execution.

How do I fix CVE-2005-2120?

To fix CVE-2005-2120, users should apply the latest security updates from Microsoft for Windows 2000 SP4 and Windows XP SP1/SP2.

What platforms are affected by CVE-2005-2120?

CVE-2005-2120 affects Microsoft Windows 2000 SP4 and Microsoft Windows XP SP1 and SP2.

Who can exploit CVE-2005-2120?

CVE-2005-2120 can be exploited by both local and remote authenticated attackers.

What type of vulnerability is CVE-2005-2120?

CVE-2005-2120 is a stack-based buffer overflow vulnerability in the Plug and Play service.

Vulnerability/
CVE-2005-2120

medium

6.5

CWE

NVD-CWE-Other 119

13/10/2005

7/8/2024

CVE-2005-2120: Buffer Overflow

First published: Thu Oct 13 2005(Updated: )

Stack-based buffer overflow in the Plug and Play (PnP) service (UMPNPMGR.DLL) in Microsoft Windows 2000 SP4, and XP SP1 and SP2, allows remote or local authenticated attackers to execute arbitrary code via a large number of "\" (backslash) characters in a registry key name, which triggers the overflow in a wsprintfW function call.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Windows XP	=sp1
Microsoft Windows 2000	=sp4
Microsoft Windows XP	=sp2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-2120?
CVE-2005-2120 has a critical severity rating due to its potential for remote code execution.
How do I fix CVE-2005-2120?
To fix CVE-2005-2120, users should apply the latest security updates from Microsoft for Windows 2000 SP4 and Windows XP SP1/SP2.
What platforms are affected by CVE-2005-2120?
CVE-2005-2120 affects Microsoft Windows 2000 SP4 and Microsoft Windows XP SP1 and SP2.
Who can exploit CVE-2005-2120?
CVE-2005-2120 can be exploited by both local and remote authenticated attackers.
What type of vulnerability is CVE-2005-2120?
CVE-2005-2120 is a stack-based buffer overflow vulnerability in the Plug and Play service.

collector/nvd-historical
collector/nvd-index
agent/softwarecombine
agent/remedy
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/references
agent/tags
agent/description
agent/event
agent/first-publish-date
agent/source
vendor/microsoft
canonical/microsoft windows xp
version/microsoft windows xp/sp1
canonical/microsoft windows 2000
version/microsoft windows 2000/sp4
version/microsoft windows xp/sp2

Frequently Asked Questions

What is the severity of CVE-2005-2120?
CVE-2005-2120 has a critical severity rating due to its potential for remote code execution.
How do I fix CVE-2005-2120?
To fix CVE-2005-2120, users should apply the latest security updates from Microsoft for Windows 2000 SP4 and Windows XP SP1/SP2.
What platforms are affected by CVE-2005-2120?
CVE-2005-2120 affects Microsoft Windows 2000 SP4 and Microsoft Windows XP SP1 and SP2.
Who can exploit CVE-2005-2120?
CVE-2005-2120 can be exploited by both local and remote authenticated attackers.
What type of vulnerability is CVE-2005-2120?
CVE-2005-2120 is a stack-based buffer overflow vulnerability in the Plug and Play service.

CVE-2005-2120: Buffer Overflow

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-2120?

How do I fix CVE-2005-2120?

What platforms are affected by CVE-2005-2120?

Who can exploit CVE-2005-2120?

What type of vulnerability is CVE-2005-2120?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2005-2120?

How do I fix CVE-2005-2120?

What platforms are affected by CVE-2005-2120?

Who can exploit CVE-2005-2120?

What type of vulnerability is CVE-2005-2120?