CVE-2005-0047

N/A Unknown
Published: May 02, 2005 Modified: April 16, 2026
View on NVD

Description

Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows attackers to execute arbitrary code, aka the "COM Structured Storage Vulnerability."

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://marc.info/?l=bugtraq&m=111755870828817&w=2
Source: cve@mitre.org
http://www.argeniss.com/research/SSExploit.c
Source: cve@mitre.org
http://www.kb.cert.org/vuls/id/597889
Source: cve@mitre.org
Patch US Government Resource
http://www.us-cert.gov/cas/techalerts/TA05-039A.html
Source: cve@mitre.org
Patch US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-012
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/19105
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1159
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2351
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2892
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A901
Source: cve@mitre.org
http://marc.info/?l=bugtraq&m=111755870828817&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.argeniss.com/research/SSExploit.c
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kb.cert.org/vuls/id/597889
Source: af854a3a-2127-422b-91ae-364da2661108
Patch US Government Resource
http://www.us-cert.gov/cas/techalerts/TA05-039A.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-012
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/19105
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1159
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2351
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2892
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A901
Source: af854a3a-2127-422b-91ae-364da2661108

20 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
8.9%
93th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

microsoft