Vulnerability Details : CVE-2007-1205
Unspecified vulnerability in Microsoft Agent (msagent\agentsvr.exe) in Windows 2000 SP4, XP SP2, and Server 2003, 2003 SP1, and 2003 SP2 allows remote attackers to execute arbitrary code via crafted URLs, which result in memory corruption.
Vulnerability category: Memory CorruptionExecute code
Products affected by CVE-2007-1205
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:professional_x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:gold:professional_x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp1:*:itanium:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:gold:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:gold:*:itanium:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp2:*:itanium:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp2:*:x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:sp1:*:x64:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-1205
94.65%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-1205
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
References for CVE-2007-1205
-
http://www.securityfocus.com/bid/23337
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2034
-
http://www.securitytracker.com/id?1017896
-
http://www.us-cert.gov/cas/techalerts/TA07-100A.html
US Government Resource
-
http://www.kb.cert.org/vuls/id/728057
US Government Resource
-
http://www.securityfocus.com/archive/1/465235/100/0/threaded
-
http://www.vupen.com/english/advisories/2007/1324
-
http://www.securityfocus.com/archive/1/466331/100/200/threaded
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-020
Jump to