VDB
CVE-2005-0050
CVE-2005-0050
PUBLISHED
CVSS 10 CRITICAL
The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, aka the "License Logging Service Vulnerability."
EPSS 55.49% · 98.1th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
55.49%
98.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| microsoft | windows_nt | 4.0, 4.0, 4.0 |
| microsoft | windows_2000 | |
| microsoft | windows_2003_server | 2003, enterprise, enterprise_64-bit |
Timeline
- Feb 8, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- May 31, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- oval:org.mitre.oval:def:644 vdb
- MS05-010 vendor-advisory
- oval:org.mitre.oval:def:4786 vdb
- oval:org.mitre.oval:def:2568 vdb
- TA05-039A third-party-advisory
- oval:org.mitre.oval:def:3582 vdb
- VU#130433 third-party-advisory
- win-license-code-execution(19101) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2005-0050 advisory