CVE-2005-2765
Last modified
CVE-2005-2765 is a vulnerability of currently unknown severity. The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. EPSS estimates a 1.25% chance of exploitation in the next 30 days.
Description
The user interface in the Windows Firewall does not properly display certain malformed entries in the Windows Registry, which makes it easier for attackers with administrator privileges to hide activities if the administrator only uses the Windows Firewall interface to monitor exceptions. NOTE: the vendor disputes this issue, saying that since administrative privileges are already required, it is not a vulnerability. CVE has not yet formally decided if such "information hiding" issues should be included.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2003 Server | 64-bit |
| Microsoft | Windows 2003 Server | sp1 |
| Microsoft | Windows Xp | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2005-2765?
How severe is CVE-2005-2765?
How do I fix CVE-2005-2765?
Are you affected by CVE-2005-2765?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST