VDB
CVE-2005-1987
CVE-2005-1987
PUBLISHED
CVSS 7.5 HIGH
Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote attackers to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the "Content-Type" string.
EPSS 57.02% · 98.2th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
57.02%
98.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | exchange_server | 2000 |
| microsoft | windows_server_2003 | sp1, *, sp1 |
| microsoft | windows_xp | |
| microsoft | windows_2000 | |
| n/a | n/a | n/a |
Timeline
- Jul 2, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 3, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Feb 2, 2024 EPSS Score
References
- 19905 vdb
- Q907245 vendor-advisory
- oval:org.mitre.oval:def:581 vdb
- oval:org.mitre.oval:def:1406 vdb
- VU#883460 third-party-advisory
- oval:org.mitre.oval:def:848 vdb
- oval:org.mitre.oval:def:1515 vdb
- win-cdo-bo(22495) vdb
- 17167 third-party-advisory
- 15067 vdb
- oval:org.mitre.oval:def:1420 vdb
- MS05-048 vendor-advisory
- oval:org.mitre.oval:def:1201 vdb
- oval:org.mitre.oval:def:1130 vdb
- TA05-284A third-party-advisory
- 1015038 vdb
- 20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability mailing-list
- 20051012 [SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability mailing-list
- 1015039 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2005-1987 advisory
…and 1 more