Vulnerability Details CVE-2005-2679
Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a running process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/16525
- http://securitytracker.com/id?1014742
- http://www.securityfocus.com/bid/14616
- http://www.sysinternals.com/Forum/forum_posts.asp?TID=957&PN=1
- http://secunia.com/advisories/16525
- http://securitytracker.com/id?1014742
- http://www.securityfocus.com/bid/14616
- http://www.sysinternals.com/Forum/forum_posts.asp?TID=957&PN=1
Products affected by CVE-2005-2679
-
cpe:2.3:a:sysinternals:process_explorer:9.23.0.0