Description
The Hyperlink Object Library for Windows 98, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an "unchecked buffer" in the library, possibly due to a buffer overflow.
Affected products
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_2003_serverenterprise – enterprise
- Microsoft / windows_2003_serverenterprise_64-bit – enterprise_64-bit
- Microsoft / windows_2003_serverr2 – r2
- Microsoft / windows_2003_serverr2 – r2
- Microsoft / windows_2003_serverstandard – standard
- Microsoft / windows_2003_serverweb – web
- Microsoft / windows_98
- Microsoft / windows_98se
- Microsoft / windows_me
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
- Microsoft / windows_xp
References
- MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-015
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A713
- MISChttp://www.us-cert.gov/cas/techalerts/TA05-039A.html
- MISChttp://www.securityfocus.com/bid/12479
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/19110
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3203
- MISChttp://securitytracker.com/id?1013119
- VENDOR_ADVISORYhttp://secunia.com/advisories/14195
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2570
- MISChttp://www.kb.cert.org/vuls/id/820427