CVE-2005-0545

high

Description

Microsoft Windows XP Pro SP2 and Windows 2000 Server SP4 running Active Directory allow local users to bypass group policies that restrict access to hidden drives by using the browse feature in Office 10 applications such as Word or Excel, or using a flash drive. NOTE: this issue has been disputed in a followup post.

References

http://www.securityfocus.com/bid/12641

http://www.securityfocus.com/archive/1/391332

http://marc.info/?l=bugtraq&m=110935549821930&w=2

Details

Source: Mitre, NVD

Published: 2005-05-02

Updated: 2019-04-30

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High