[email protected]CVE-2005-0048

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0048

2005-05-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-0048

microsoft windows

ip validation

denial of service

remote code execution

security vulnerability

7.8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.29 Low

EPSS

Percentile

96.9%

JSON

Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the “IP Validation Vulnerability.”

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq*
microsoft:windows_2000microsoft windows 2000eq*

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	*
microsoft:windows_2000	microsoft windows 2000	eq	*

References

www.kb.cert.org/vuls/id/233754

www.us-cert.gov/cas/techalerts/TA05-102A.html

xforce.iss.net/xforce/alerts/id/192

docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1744

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3824

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4549

7.8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.29 Low

EPSS

Percentile

96.9%

JSON

Related for CVE-2005-0048

cvelist1 cert1 nessus2 openvas2 securityvulns1