PT-2005-1478 · Microsoft · Windows 2000+3

Yuji Ukai

Published

2005-02-14

Updated

2019-04-30

CVE-2005-0416

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Windows NT Windows 2000 through SP4 Windows XP through SP1 Windows 2003

Description The issue allows remote attackers to execute arbitrary code via the AnimationHeaderBlock length field, leading to a stack-based buffer overflow in the Windows Animated Cursor (ANI) capability.

Recommendations For Windows NT, consider applying security patches or updates to fix the issue. For Windows 2000 through SP4, update to a newer service pack or apply a security patch. For Windows XP through SP1, update to a newer service pack or apply a security patch. For Windows 2003, consider applying security patches or updates to fix the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0416

Affected Products

Windows 2000

Windows 2003

Windows Nt

Windows Xp

PT-2005-1478 · Microsoft · Windows 2000+3

CVE-2005-0416

Related Identifiers

Affected Products

References · 9