Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-1218 — Microsoft Windows 2003 Server vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

67.1%

top 1.44%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows 2003 Server

Timeline

PublishedAug 10

Latest updateMay 1

Description

The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_2003_server7 versions+6

Patches

Patch: www.microsoft.com ↗Patch: www.securityfocus.com ↗Patch: www.us-cert.gov ↗

🔴Vulnerability Details

GHSA

GHSA-rv75-22v3-44rx: The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of servic↗2022-05-01

▶

CVEList

CVE-2005-1218: The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of servic↗2005-08-10

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows XP SP2 - 'rdpwd.sys' Remote Kernel Denial of Service↗2005-08-09

▶