CVE-2005-0057 - Vaginal Pencil

Description

The Hyperlink Object Library for Windows 98 2000 XP and Server 2003 allows remote attackers to execute arbitrary code via a crafted link that triggers an \unchecked buffer\ in the library possibly due to a buffer overflow.

Reference

http://www.us-cert.gov/cas/techalerts/TA05-039A.html http://www.kb.cert.org/vuls/id/820427 http://www.securityfocus.com/bid/12479 http://securitytracker.com/id?1013119 http://secunia.com/advisories/14195 https://exchange.xforce.ibmcloud.com/vulnerabilities/19110 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A713 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3203 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2570 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-015