CVE-2005-2765

The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. CVE has not yet formally decided if such "information hiding" issues should be included.

Published: Sep 2, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2765
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_2003_server	64-bit	64-bit.x
microsoft / windows_xp	-	-
microsoft / windows_2003_server	sp1	sp1.x

http://www.microsoft.com/technet/security/advisory/897663.mspx

Vulnerability Database

289,697

CVE-2005-2765