CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1187

Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.1%

CVSS Severity

CVSS v2 Score 5.1

References

http://securitytracker.com/id?1013727
http://www.unl0ck.org/files/papers/winhex.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20139
http://securitytracker.com/id?1013727
http://www.unl0ck.org/files/papers/winhex.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20139

Products affected by CVE-2005-1187

X-Ways Software Technology Ag » Winhex » Version: 12.05_sr-14

cpe:2.3:a:x-ways_software_technology_ag:winhex:12.05_sr-14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1187

Products

Pricing

Contact Us