CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2935

Unquoted Windows search path vulnerability in Microsoft AntiSpyware might allow local users to execute code via a malicious c:\program.exe file, which is run by AntiSpywareMain.exe when it attempts to execute gsasDtServ.exe. NOTE: it is not clear whether this overlaps CVE-2005-2940.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.8%

CVSS Severity

CVSS v2 Score 4.6

References

http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033909.html
http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033910.html
http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033909.html
http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033910.html

Products affected by CVE-2005-2935

Microsoft » Antispyware » Version: N/A

cpe:2.3:a:microsoft:antispyware:-
Microsoft » Antispyware » Version: 1.0.509

cpe:2.3:a:microsoft:antispyware:1.0.509

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2935

Products

Pricing

Contact Us