CVE-2005-2765 — Microsoft Windows 2003 Server vulnerability

3 documents3 sources

Severity

2.1LOWNVD

EPSS

0.4%

top 39.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 2003 Server

Timeline

PublishedSep 1

Latest updateMay 1

Description

The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. CVE has not yet formally decided if such "information hiding" issues should be …

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_2003_server64-bit, sp1+1

🔴Vulnerability Details

GHSA

GHSA-f265-7v27-r436: The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for atta↗2022-05-01

▶

CVEList

CVE-2005-2765: The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for atta↗2005-09-01

▶