Lucene search
SAINT CorporationSAINT:C2B6B45C1B1FC41E6ACB6FBC791991D0HistoryMar 03, 2006 - 12:00 a.m.
Windows Plug and Play buffer overflow
2006-03-0300:00:00
SAINT Corporation
www.saintcorporation.com
9
0.975 High
EPSS
Percentile
100.0%
Added: 03/03/2006
CVE: CVE-2005-1983
BID: 14513
OSVDB: 18605
Background
The Windows Plug and Play service allows Windows operating systems to automatically detect and configure a new hardware device, such as a mouse.
Problem
A buffer overflow in the Plug and Play service could allow command execution with administrative privileges.
Resolution
Apply the patch referenced in Microsoft Security Bulletin 05-047.
References
<http://www.microsoft.com/technet/security/bulletin/MS05-039.mspx>
Limitations
Remote, uncredentialed command execution is not possible on Windows XP or Windows Server 2003.
Successful exploitation may cause the target to reboot after disconnection.
Platforms
Windows
Related
cert
cert
Microsoft Plug and Play contains a buffer overflow vulnerability
2005-08-09 00:00:00
saint
saint
Windows Plug and Play buffer overflow
2006-03-03 00:00:00
Windows Plug and Play buffer overflow
2006-03-03 00:00:00
Windows Plug and Play buffer overflow
2006-03-03 00:00:00
nessus
nessus
cvelist
cvelist
CVE-2005-1983
2005-08-10 04:00:00
securityvulns
securityvulns
canvas
canvas
Immunity Canvas: MS05_039
2005-08-10 04:00:00
packetstorm
packetstorm
Microsoft Plug and Play Service Overflow
2009-11-26 00:00:00
seebug
seebug
MS Windows Plug-and-Play Service Remote Universal Exploit (MS05-039)
2005-08-12 00:00:00
checkpoint_advisories
checkpoint_advisories
cve
cve
CVE-2005-1983
2005-08-10 04:00:00
nvd
nvd
CVE-2005-1983
2005-08-10 04:00:00