PT-2005-2655 · Microsoft · Groove Virtual Office+1

Published

2005-05-20

Updated

2008-09-05

CVE-2005-1678

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Groove Virtual Office versions prior to 3.1 build 2338 Groove Virtual Office version 3.1a prior to build 2364 Groove Workspace versions prior to 2.5n build 1871

Description The issue is related to the improper display of file extensions on attached or embedded files in a compound document. This may allow remote attackers to trick users into executing malicious code.

Recommendations For Groove Virtual Office versions prior to 3.1 build 2338, update to version 3.1 build 2338 or later. For Groove Virtual Office version 3.1a prior to build 2364, update to version 3.1a build 2364 or later. For Groove Workspace versions prior to 2.5n build 1871, update to version 2.5n build 1871 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1678

Affected Products

Groove Virtual Office

Groove Workspace

PT-2005-2655 · Microsoft · Groove Virtual Office+1

CVE-2005-1678

Related Identifiers

Affected Products

References · 4