CVE-2005-1212
Summary
| CVE | CVE-2005-1212 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2005-06-14 04:00:00 UTC |
| Updated | 2019-04-30 14:27:00 UTC |
| Description | Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Microsoft | Windows 2000 | All | All | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp1 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp2 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp3 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp4 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp4 | All | fr |
| Operating System | Microsoft | Windows 2000 | All | All | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp1 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp2 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp3 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp4 | All | All |
| Operating System | Microsoft | Windows 2000 | All | sp4 | All | fr |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | All | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp1 | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp2 | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp3 | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | All | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp1 | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp2 | All | All |
| Operating System | Microsoft | Windows 2000 Terminal Services | All | sp3 | All | All |
| Operating System | Microsoft | Windows 2003 Server | 64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | datacenter_64-bit | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | datacenter_64-bit | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | datacenter_64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | standard | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard_64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | 64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | datacenter_64-bit | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | datacenter_64-bit | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | enterprise_64-bit | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | All | datacenter_64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | r2 | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard | All | 64-bit | All |
| Operating System | Microsoft | Windows 2003 Server | standard | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | standard_64-bit | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | All | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | sp1 | All | All |
| Operating System | Microsoft | Windows 2003 Server | web | sp1_beta_1 | All | All |
| Operating System | Microsoft | Windows 98 | All | gold | All | All |
| Operating System | Microsoft | Windows 98 | All | gold | All | All |
| Operating System | Microsoft | Windows 98se | All | All | All | All |
| Operating System | Microsoft | Windows 98se | All | All | All | All |
| Operating System | Microsoft | Windows Me | All | All | All | All |
| Operating System | Microsoft | Windows Me | All | All | second_edition | All |
| Operating System | Microsoft | Windows Me | All | All | All | All |
| Operating System | Microsoft | Windows Me | All | All | second_edition | All |
| Operating System | Microsoft | Windows Xp | All | All | 64-bit | All |
| Operating System | Microsoft | Windows Xp | All | All | embedded | All |
| Operating System | Microsoft | Windows Xp | All | All | home | All |
| Operating System | Microsoft | Windows Xp | All | All | media_center | All |
| Operating System | Microsoft | Windows Xp | All | gold | All | All |
| Operating System | Microsoft | Windows Xp | All | gold | professional | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | 64-bit | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | embedded | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | home | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | media_center | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | tablet_pc | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | home | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | media_center | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | tablet_pc | All |
| Operating System | Microsoft | Windows Xp | All | All | 64-bit | All |
| Operating System | Microsoft | Windows Xp | All | All | embedded | All |
| Operating System | Microsoft | Windows Xp | All | All | home | All |
| Operating System | Microsoft | Windows Xp | All | All | media_center | All |
| Operating System | Microsoft | Windows Xp | All | gold | All | All |
| Operating System | Microsoft | Windows Xp | All | gold | professional | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | 64-bit | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | embedded | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | home | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | media_center | All |
| Operating System | Microsoft | Windows Xp | All | sp1 | tablet_pc | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | home | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | media_center | All |
| Operating System | Microsoft | Windows Xp | All | sp2 | tablet_pc | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Microsoft Step-By-Step Interactive Training Bookmark Link Buffer Overflow Vulnerability | BID | www.securityfocus.com | |
| Secunia - Advisories - Microsoft Windows Step-by-Step Interactive Training Vulnerability | SECUNIA | secunia.com | Patch, Vendor Advisory |
| Accenture | Let there be change | IDEFENSE | idefense.com | Patch, Vendor Advisory |
| Microsoft Security Bulletin MS05-031 - Important | Microsoft Docs | MS | docs.microsoft.com | |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| Microsoft Step-by-Step Interactive Training Bookmark Link File Validation Flaw Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.