CVE-2005-1545

Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow.

CVSS v2.0 5.1 MEDIUM

5.1^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:H/Au:N/C:P/I:P/A:P

Exploitability : 4.9 / Impact : 6.4

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.debian.org/security/2005/dsa-743
http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml
http://www.debian.org/security/2005/dsa-743
http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ht_editor:ht_editor:0.3.991:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.3.992:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.0:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.1:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.2:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.3:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.4:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.4b:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.4c:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.4d:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.4.5:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.5.0:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.6.0:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.6.0b:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.0:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.1:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.2:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.3:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.4:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.7.5:::::::*
	cpe:2.3:a:ht_editor:ht_editor:0.8.0:::::::*
	cpe:2.3:a:ht_editor:ht_editor:2000-01-14:::::::*

History

20 Nov 2024, 23:57

Type	Values Removed	Values Added
References	~~() http://www.debian.org/security/2005/dsa-743 -~~	() http://www.debian.org/security/2005/dsa-743 -
References	~~() http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml -~~	() http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml -

Information

Published : 2005-05-14 04:00

Updated : 2025-04-03 01:03

NVD link : CVE-2005-1545

Mitre link : CVE-2005-1545

CVE.ORG link : CVE-2005-1545

JSON object : View

Products Affected

ht_editor

ht_editor

CWE

NVD-CWE-Other

{"id": "CVE-2005-1545", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2005-05-14T04:00:00.000", "references": [{"url": "http://www.debian.org/security/2005/dsa-743", "source": "cve@mitre.org"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2005/dsa-743", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200505-08.xml", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.3.991:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1108C417-811D-4CD9-A5B7-7A1A594B5ECB"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.3.992:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA728463-FBA7-4F70-A07D-5EF2E4F607B7"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76B1CDB9-B000-4E34-9E56-62E39CE741B2"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B824F9A-9454-463F-A638-9C80427A22CD"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEB246D3-D7A8-4AE5-9DB9-2BE8ABF79509"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09EF9BF0-2B92-439D-B1C3-B37A192C31E7"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03A9468A-A19D-413E-B323-9105A7563B54"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.4b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D793627-8CCB-4F17-A840-9525A87CAB2A"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.4c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C141C50-4391-41AA-BD99-89D9B3F33B6A"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.4d:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43736AC1-5698-4BD0-8C18-164F22D359E9"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4363A59-87F0-4B3B-BD2A-620341B2099B"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E2EB739-42DA-41B8-AD2B-095D057DC5E7"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2F4778B-3EE7-41F3-8325-D6C191A790AD"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.6.0b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA4BF6D5-7C26-4503-AF9B-104337A17151"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7108F831-CCAD-4AAD-9B8F-771ACBDF8BD8"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B88FE1B4-59D9-423C-A133-8D30AAEB5142"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05DD7652-1E91-4C79-A9B6-4B8730F7D56D"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F7DCB2C-C038-4D74-80EC-F08753612261"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBA961D7-1EC0-4633-8782-265CB843A870"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.7.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4DA7CF8-0A79-4448-A987-8409AC86B5DB"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:0.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "013B1243-B580-4E9D-8B33-4D93997A1C69"}, {"criteria": "cpe:2.3:a:ht_editor:ht_editor:2000-01-14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A887107-03C8-41C4-B213-F9C08B30F51F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}