CVE-2005-1214 — Microsoft Windows 2003 Server vulnerability

3 documents3 sources

Severity

5.1MEDIUMNVD

EPSS

22.5%

top 4.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 2003 Server

Timeline

PublishedJun 14

Latest updateMay 1

Description

Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/windows_2003_server8 versions+7

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-m467-w57w-vmjx: Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web↗2022-05-01

▶

CVEList

CVE-2005-1214: Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web↗2005-06-14

▶