CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0063

The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host (MSHTA), as demonstrated using a Microsoft Word document.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.673

EPSS Ranking 98.5%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2005-0063

Microsoft » Windows 2000 » Version: N/A

cpe:2.3:o:microsoft:windows_2000:-
Microsoft » Windows 2000 » Version: beta3

cpe:2.3:o:microsoft:windows_2000:beta3
Microsoft » Windows 2003 Server » Version: enterprise

cpe:2.3:o:microsoft:windows_2003_server:enterprise
Microsoft » Windows 2003 Server » Version: r2

cpe:2.3:o:microsoft:windows_2003_server:r2
Microsoft » Windows 2003 Server » Version: standard

cpe:2.3:o:microsoft:windows_2003_server:standard
Microsoft » Windows 2003 Server » Version: web

cpe:2.3:o:microsoft:windows_2003_server:web
Microsoft » Windows 98 » Version: N/A

cpe:2.3:o:microsoft:windows_98:-
Microsoft » Windows 98se » Version: N/A

cpe:2.3:o:microsoft:windows_98se:-
Microsoft » Windows Me » Version: N/A

cpe:2.3:o:microsoft:windows_me:-
Microsoft » Windows Xp » Version: Any

cpe:2.3:o:microsoft:windows_xp:*
Microsoft » Windows Xp » Version: N/A

cpe:2.3:o:microsoft:windows_xp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0063

Products

Pricing

Contact Us