Overview
Microsoft Object Management code has a buffer overflow vulnerability that can cause a system to reboot.
Description
A buffer overflow vulnerability in Microsoft Object Management code exists that could be attacked by sending specially crafted requests locally on an affected operating system version. Microsoft indicates that this vulnerability could not be exploited remotely, an attacker would have to be a locally authenticated user. |
Impact
A locally authenticated attacker could cause an affected system to stop responding and automatically restart. Repeated exploitation of this vulnerability may result in a sustained denial of service. |
Solution
Apply a patch Microsoft has published Microsoft Security Bulletin MS05-018 in response to this issue. Users are strongly encouraged to review this advisory and apply the patches it refers to. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to Microsoft for reporting this vulnerability.
This document was written by Robert Mead based on information provided by Microsoft.
Other Information
| CVE IDs: | CVE-2005-0550 |
| Severity Metric: | 2.43 |
| Date Public: | 2005-04-12 |
| Date First Published: | 2005-04-13 |
| Date Last Updated: | 2005-04-13 21:46 UTC |
| Document Revision: | 10 |