Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2005-1212

Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.

  • Published: Jun 14, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-1212
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
microsoft / windows_2003_server 64-bit 64-bit.x
microsoft / windows_2000_terminal_services - -
microsoft / windows_2003_server web-sp1_beta_1 web-sp1_beta_1.x
microsoft / windows_xp - -
microsoft / windows_2003_server web web.x
microsoft / windows_2003_server enterprise enterprise.x
microsoft / windows_2003_server enterprise_64-bit enterprise_64-bit.x
microsoft / windows_2003_server enterprise-sp1_beta_1 enterprise-sp1_beta_1.x
microsoft / windows_2000 - -
microsoft / windows_me - -
microsoft / windows_2003_server standard_64-bit standard_64-bit.x
microsoft / windows_2003_server datacenter_64-bit-sp1 datacenter_64-bit-sp1.x
microsoft / windows_2003_server datacenter_64-bit-sp1_beta_1 datacenter_64-bit-sp1_beta_1.x
microsoft / windows_98se - -
microsoft / windows_2003_server standard-sp1_beta_1 standard-sp1_beta_1.x
microsoft / windows_2003_server r2-sp1 r2-sp1.x
microsoft / windows_2003_server enterprise_64-bit-sp1 enterprise_64-bit-sp1.x
microsoft / windows_2003_server r2 r2.x
microsoft / windows_2003_server r2-sp1_beta_1 r2-sp1_beta_1.x
microsoft / windows_2003_server web-sp1 web-sp1.x
microsoft / windows_2003_server standard-sp1 standard-sp1.x
microsoft / windows_2003_server enterprise-sp1 enterprise-sp1.x
microsoft / windows_2003_server standard standard.x
microsoft / windows_2003_server enterprise_64-bit-sp1_beta_1 enterprise_64-bit-sp1_beta_1.x
microsoft / windows_98 - -