Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-1988 — Out-of-bounds Write in Microsoft Internet Explorer

5 documents4 sources

Severity

5.1MEDIUMNVD

EPSS

83.4%

top 0.72%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft IE Microsoft Internet Explorer

Timeline

PublishedAug 10

Latest updateMay 1

Description

Unknown vulnerability in Internet Explorer 5.0, 5.5, and 6.0 allows remote attackers to execute arbitrary code via a web site or an HTML e-mail containing a crafted JPEG image that causes memory corruption, aka "JPEG Image Rendering Memory Corruption Vulnerability".

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

▶NVDmicrosoft/internet_explorer5.01, 5.5+1

▶NVDmicrosoft/ie6

Patches

Patch: secunia.com ↗Patch: www.kb.cert.org ↗Patch: www.us-cert.gov ↗

🔴Vulnerability Details

GHSA

GHSA-x5m5-xfqq-w7pv: Unknown vulnerability in Internet Explorer 5↗2022-05-01

▶

CVEList

CVE-2005-1988: Unknown vulnerability in Internet Explorer 5↗2005-08-10

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Internet Explorer - 'blnmgr.dll' COM Object Remote (MS05-038)↗2005-08-09

▶

Exploit-DB

Microsoft Internet Explorer 5.0.1 - '.JPEG' Image Rendering Buffer Overflow↗2005-07-15

▶