Vulnerability Details : CVE-2005-1545
Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow.
Vulnerability category: OverflowExecute code
Products affected by CVE-2005-1545
- cpe:2.3:a:ht_editor:ht_editor:0.3.991:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.3.992:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.4d:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.4b:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:2000-01-14:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.4.4c:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.6.0b:*:*:*:*:*:*:*
- cpe:2.3:a:ht_editor:ht_editor:0.7.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-1545
0.79%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-1545
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.1
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:P |
4.9
|
6.4
|
NIST |
References for CVE-2005-1545
-
http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml
HT Editor: Multiple buffer overflows (GLSA 200505-08) — Gentoo security
-
http://www.debian.org/security/2005/dsa-743
[SECURITY] [DSA 743-1] New ht packages fix arbitrary code execution
Jump to