CVE-2005-2765

The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. CVE has not yet formally decided if such "information hiding" issues should be included.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:sp1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*

History

21 Nov 2024, 00:00

Type Values Removed Values Added
References () http://www.microsoft.com/technet/security/advisory/897663.mspx - Vendor Advisory () http://www.microsoft.com/technet/security/advisory/897663.mspx - Vendor Advisory

Information

Published : 2005-09-01 22:03

Updated : 2024-11-21 00:00


NVD link : CVE-2005-2765

Mitre link : CVE-2005-2765

CVE.ORG link : CVE-2005-2765


JSON object : View

Products Affected

microsoft

  • windows_2003_server
  • windows_xp