What is CVE-2005-1213?

CVE-2005-1213 is a vulnerability in N/a. Published 2005-06-14.

Is CVE-2005-1213 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-1213

Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.

EPSS: 0.826 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

MS05-030 (x_refsource_MS, vendor-advisory)
13951 (vdb-entry, x_refsource_BID)
oval:org.mitre.oval:def:989 (signature, x_refsource_OVAL, vdb-entry)
VU#130614 (x_refsource_CERT-VN, third-party-advisory)
oval:org.mitre.oval:def:1088 (signature, x_refsource_OVAL, vdb-entry)
oval:org.mitre.oval:def:167 (signature, x_refsource_OVAL, vdb-entry)
20050614 Microsoft Outlook Express NNTP Response Parsing Buffer Overflow Vulnerability (x_refsource_IDEFENSE, third-party-advisory)
1014200 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2005-1213?: CVE-2005-1213 is a vulnerability in N/a. Published 2005-06-14.
Is CVE-2005-1213 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.