Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2005-2127
HistoryAug 19, 2005 - 4:00 a.m.

CVE-2005-2127

2005-08-1904:00:00
microsoft
www.cve.org
5

AI Score

7.7

Confidence

High

EPSS

0.613

Percentile

97.8%

JSON

Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, as originally demonstrated using the (1) DDS Library Shape Control (Msdds.dll) COM object, and other objects including (2) Blnmgrps.dll, (3) Ciodm.dll, (4) Comsvcs.dll, (5) Danim.dll, (6) Htmlmarq.ocx, (7) Mdt2dd.dll (as demonstrated using a heap corruption attack with uninitialized memory), (8) Mdt2qd.dll, (9) Mpg4ds32.ax, (10) Msadds32.ax, (11) Msb1esen.dll, (12) Msb1fren.dll, (13) Msb1geen.dll, (14) Msdtctm.dll, (15) Mshtml.dll, (16) Msoeacct.dll, (17) Msosvfbr.dll, (18) Mswcrun.dll, (19) Netshell.dll, (20) Ole2disp.dll, (21) Outllib.dll, (22) Psisdecd.dll, (23) Qdvd.dll, (24) Repodbc.dll, (25) Shdocvw.dll, (26) Shell32.dll, (27) Soa.dll, (28) Srchui.dll, (29) Stobject.dll, (30) Vdt70.dll, (31) Vmhelper.dll, and (32) Wbemads.dll, aka a variant of the “COM Object Instantiation Memory Corruption vulnerability.”

References

Related

checkpoint_advisories 1
nessus 1
cert 2
cve 3
securityvulns 3
exploitdb 1
nvd 3
cvelist 2
prion 1
checkpoint_advisories
checkpoint_advisories
Microsoft Design Tools msdds.dll Memory Corruption (MS05-052; CVE-2005-2127)
2009-10-19 00:00:00
nessus
nessus
MS05-052: Cumulative Security Update for Internet Explorer (896688)
2005-10-11 00:00:00
cert
cert
Microsoft DDS Library Shape Control (msdds.dll) COM object contains an unspecified vulnerability
2005-08-18 00:00:00
Multiple COM objects cause memory corruption in Microsoft Internet Explorer
2005-08-09 00:00:00
cve
cve
CVE-2005-2127
2005-08-19 04:00:00
CVE-2005-2831
2005-12-14 11:03:00
CVE-2007-4254
2007-08-08 23:17:00
securityvulns
securityvulns
Microsoft Security Bulletin MS05-052 umulative Security Update for Internet Explorer (896688)
2005-10-13 00:00:00
[EEYEB20050915] - MDT2DD.DLL COM Object Uninitialized Heap Memory Vulnerability
2005-10-12 00:00:00
US-CERT Technical Cyber Security Alert TA05-347A -- Microsoft Internet Explorer Vulnerabilities
2005-12-14 00:00:00
exploitdb
exploitdb
Microsoft Visual Studio .NET - 'msdds.dll' Remote Code Execution
2005-08-17 00:00:00
nvd
nvd
CVE-2005-2127
2005-08-19 04:00:00
CVE-2005-2831
2005-12-14 11:03:00
CVE-2007-4254
2007-08-08 23:17:00
cvelist
cvelist
CVE-2005-2831
2005-12-14 11:00:00
CVE-2007-4254
2007-08-08 23:00:00
prion
prion
Stack overflow
2007-08-08 23:17:00

AI Score

7.7

Confidence

High

EPSS

0.613

Percentile

97.8%

JSON
Related for CVELIST:CVE-2005-2127
checkpoint_advisories1nessus1cert2cve3securityvulns3exploitdb1nvd3cvelist2prion1