CVE-2005-1218 [Medium] | Denial of Service in Windows 2000

CVE-2005-1218 is rated High Exploit Risk (74.5/100): CVSS Medium severity, with high exploitation likelihood (EPSS 67.05%, 98th percentile). 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +6.75% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
1143	exploit_db	edb	2005-08-09	Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

1143

exploit_db

edb

2005-08-09

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-12-28	60.30%	67.05%	+6.75%
2	2025-12-27	67.05%	60.30%	-6.75%
3	2025-10-28	—	67.05%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-12-28

60.30%

67.05%

+6.75%

2025-12-27

67.05%

60.30%

-6.75%

2025-10-28

—

67.05%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.0	2.0	MEDIUM	`AV:N/AC:L/Au:N/C:N/I:N/A:P` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:N) No confidentiality impact. Integrity impact (I:N) No integrity impact. Availability impact (A:P) Partial availability impact.	10.0	2.9	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.0

2.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:N): No confidentiality impact.
Integrity impact (I:N): No integrity impact.
Availability impact (A:P): Partial availability impact.

10.0

2.9

[email protected]

Affected software / configurations for CVE-2005-1218

Vendor	Product	Version	Raw CPE
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::::::::
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp1::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp2::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp3::::::*
microsoft	windows_2000	—	cpe:2.3:o:microsoft:windows_2000::sp4::::::*
microsoft	windows_2003_server	datacenter_64-bit	cpe:2.3:o:microsoft:windows_2003_server:datacenter_64-bit:sp1::::::
microsoft	windows_2003_server	enterprise	cpe:2.3:o:microsoft:windows_2003_server:enterprise::64-bit:::::
microsoft	windows_2003_server	enterprise	cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1::::::
microsoft	windows_2003_server	enterprise_64-bit	cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:::::::*
microsoft	windows_2003_server	enterprise_64-bit	cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:sp1::::::
microsoft	windows_2003_server	r2	cpe:2.3:o:microsoft:windows_2003_server:r2::64-bit:::::
microsoft	windows_2003_server	r2	cpe:2.3:o:microsoft:windows_2003_server:r2::datacenter_64-bit:::::
microsoft	windows_2003_server	r2	cpe:2.3:o:microsoft:windows_2003_server:r2:sp1::::::
microsoft	windows_2003_server	standard	cpe:2.3:o:microsoft:windows_2003_server:standard::64-bit:::::
microsoft	windows_2003_server	standard	cpe:2.3:o:microsoft:windows_2003_server:standard:sp1::::::
microsoft	windows_2003_server	standard_64-bit	cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:::::::*
microsoft	windows_2003_server	web	cpe:2.3:o:microsoft:windows_2003_server:web:::::::*
microsoft	windows_2003_server	web	cpe:2.3:o:microsoft:windows_2003_server:web:sp1::::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::64-bit:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp:::home:::::*
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:64-bit:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
microsoft	windows_xp	—	cpe:2.3:o:microsoft:windows_xp::sp2:home:::::

References for CVE-2005-1218

URL	Tags
http://marc.info/?l=bugtraq&m=112146383919436&w=2
http://security-protocols.com/modules.php?name=News&file=article&sid=2783
http://www.kb.cert.org/vuls/id/490628	US Government Resource
http://www.microsoft.com/technet/security/advisory/904797.mspx	Patch Vendor Advisory
http://www.securityfocus.com/bid/14259	Patch
http://www.us-cert.gov/cas/techalerts/TA05-221A.html	Patch US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-041
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100092
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A180
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A346
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A376
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A609
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A618
https://www.immunitysec.com/pipermail/dailydave/2005-July/002188.html

URL

CVE-2005-1218

Public exploit references (Exploit-DB) for CVE-2005-1218

Exploit prediction scoring system (EPSS) score for CVE-2005-1218

Common vulnerability scoring system (CVSS) metrics for CVE-2005-1218

Weakness enumeration for CVE-2005-1218

Affected software / configurations for CVE-2005-1218

References for CVE-2005-1218