CVE-2005-2127 [高] | Memory Corruption（Catalyst Driver）

Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, as originally demonstrated using the (1) DDS Library Shape Control (Msdds.dll) COM object, and other objects including (2) Blnmgrps.dll, (3) Ciodm.dll, (4) Comsvcs.dll, (5) Danim.dll, (6) Htmlmarq.ocx, (7) Mdt2dd.dll (as demonstrated using a heap corruption attack with uninitialized memory), (8) Mdt2qd.dll, (9) Mpg4ds32.ax, (10) Msadds32.ax, (11) Msb1esen.dll, (12) Msb1fren.dll, (13) Msb1geen.dll, (14) Msdtctm.dll, (15) Mshtml.dll, (16) Msoeacct.dll, (17) Msosvfbr.dll, (18) Mswcrun.dll, (19) Netshell.dll, (20) Ole2disp.dll, (21) Outllib.dll, (22) Psisdecd.dll, (23) Qdvd.dll, (24) Repodbc.dll, (25) Shdocvw.dll, (26) Shell32.dll, (27) Soa.dll, (28) Srchui.dll, (29) Stobject.dll, (30) Vdt70.dll, (31) Vmhelper.dll, and (32) Wbemads.dll, aka a variant of the "COM Object Instantiation Memory Corruption vulnerability."

EDB-ID	ソース	種別	公開	リンク
26167	exploit_db	edb	2005-08-17	Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

ソース

種別

公開

リンク

26167

exploit_db

edb

2005-08-17

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	日付	旧 EPSS スコア	新 EPSS スコア	Δ（新 − 旧）
1	2026-02-08	44.57%	42.05%	-2.52%
2	2025-09-17	42.71%	44.57%	+1.86%
3	2025-03-30	—	42.71%	—

日付

旧 EPSS スコア

新 EPSS スコア

Δ（新 − 旧）

2026-02-08

44.57%

42.05%

-2.52%

2025-09-17

42.71%

44.57%

+1.86%

2025-03-30

—

42.71%

—

ベーススコア	バージョン	深刻度	ベクトル	悪用しやすさ	影響	スコアの出典
7.5	2.0	HIGH	`AV:N/AC:L/Au:N/C:P/I:P/A:P` クリックして展開アクセス経路 (AV:N) ルーティング可能なネットワーク越しに、遠隔から到達・悪用しうる。アクセスの複雑さ (AC:L) 手順が短く、再現性が高い。認証 (AU:N) 認証を経ずに攻撃を完結できる。機密性への影響 (C:P) 機密性は部分的に損なわれる。完全性への影響 (I:P) 完全性は部分的に損なわれる。可用性への影響 (A:P) 可用性は部分的に損なわれる。	10.0	6.4	[email protected]

ベーススコア

バージョン

深刻度

ベクトル

悪用しやすさ

影響

スコアの出典

7.5

2.0

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P クリックして展開

アクセス経路 (AV:N): ルーティング可能なネットワーク越しに、遠隔から到達・悪用しうる。
アクセスの複雑さ (AC:L): 手順が短く、再現性が高い。
認証 (AU:N): 認証を経ずに攻撃を完結できる。
機密性への影響 (C:P): 機密性は部分的に損なわれる。
完全性への影響 (I:P): 完全性は部分的に損なわれる。
可用性への影響 (A:P): 可用性は部分的に損なわれる。

10.0

6.4

[email protected]

CVE-2005-2127 の影響を受けるソフトウェア／構成

ベンダー	製品	バージョン	生の CPE
ati	catalyst_driver	—	cpe:2.3:a:ati:catalyst_driver::::::::
microsoft	.net_framework	1.1	cpe:2.3:a:microsoft:.net_framework:1.1:::::::*
microsoft	.net_framework	1.1	cpe:2.3:a:microsoft:.net_framework:1.1:sp1::::::
microsoft	.net_framework	1.1	cpe:2.3:a:microsoft:.net_framework:1.1:sp2::::::
microsoft	.net_framework	1.1	cpe:2.3:a:microsoft:.net_framework:1.1:sp3::::::
microsoft	office	—	cpe:2.3:a:microsoft:office::::::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:::::::*
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:::ja::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:::ko::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:::zh::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:sp1::::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:sp2::::::
microsoft	office	2000	cpe:2.3:a:microsoft:office:2000:sp3::::::
microsoft	office	xp	cpe:2.3:a:microsoft:office:xp:sp1::::::
microsoft	office	xp	cpe:2.3:a:microsoft:office:xp:sp2::::::
microsoft	office	xp	cpe:2.3:a:microsoft:office:xp:sp3::::::
microsoft	project	98	cpe:2.3:a:microsoft:project:98:::::::*
microsoft	project	2000	cpe:2.3:a:microsoft:project:2000:::::::*
microsoft	project	2002	cpe:2.3:a:microsoft:project:2002:::::::*
microsoft	project	2002	cpe:2.3:a:microsoft:project:2002:sp1::::::
microsoft	project	2003	cpe:2.3:a:microsoft:project:2003:::::::*
microsoft	project	2003	cpe:2.3:a:microsoft:project:2003:sp1::::::
microsoft	visio	2000	cpe:2.3:a:microsoft:visio:2000:sr1:::enterprise:::*
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002:::::::*
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002::::professional:::
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002:sp1::::::
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002:sp2::::::
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002:sp2:::professional:::*
microsoft	visio	2002	cpe:2.3:a:microsoft:visio:2002:sp2:::standard:::*
microsoft	visio	2003	cpe:2.3:a:microsoft:visio:2003:::::::*
microsoft	visio	2003	cpe:2.3:a:microsoft:visio:2003::::professional:::
microsoft	visio	2003	cpe:2.3:a:microsoft:visio:2003::::standard:::
microsoft	visio	2003	cpe:2.3:a:microsoft:visio:2003:sp1::::::
microsoft	visual_studio_.net	2002	cpe:2.3:a:microsoft:visual_studio_.net:2002:gold::::::
microsoft	visual_studio_.net	2003	cpe:2.3:a:microsoft:visual_studio_.net:2003::::enterprise_architect:::
microsoft	visual_studio_.net	2003	cpe:2.3:a:microsoft:visual_studio_.net:2003:gold::::::
microsoft	visual_studio_.net	gold	cpe:2.3:a:microsoft:visual_studio_.net:gold::::academic:::
microsoft	visual_studio_.net	gold	cpe:2.3:a:microsoft:visual_studio_.net:gold::::enterprise_architect:::
microsoft	visual_studio_.net	gold	cpe:2.3:a:microsoft:visual_studio_.net:gold::::enterprise_developer:::
microsoft	visual_studio_.net	gold	cpe:2.3:a:microsoft:visual_studio_.net:gold::::professional:::
microsoft	visual_studio_.net	gold	cpe:2.3:a:microsoft:visual_studio_.net:gold::::trial:::

CVE-2005-2127 の参考情報

URL	タグ
http://isc.sans.org/diary.php?date=2005-08-18	Third Party Advisory
http://secunia.com/advisories/16480	Patch Vendor Advisory
http://secunia.com/advisories/17172	Permissions Required Third Party Advisory
http://secunia.com/advisories/17223	Permissions Required Third Party Advisory
http://secunia.com/advisories/17509	Permissions Required Third Party Advisory
http://securityreason.com/securityalert/72	Third Party Advisory
http://securitytracker.com/id?1014727	Exploit Patch Third Party Advisory VDB Entry Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2005-214.pdf	Third Party Advisory
http://www.kb.cert.org/vuls/id/740372	Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/898241	Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/959049	Third Party Advisory US Government Resource
http://www.microsoft.com/technet/security/advisory/906267.mspx	Mitigation Patch Vendor Advisory
http://www.securityfocus.com/archive/1/470690/100/0/threaded
http://www.securityfocus.com/bid/14594	Exploit Patch Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/15061	Third Party Advisory VDB Entry
http://www.us-cert.gov/cas/techalerts/TA05-284A.html	Third Party Advisory US Government Resource
http://www.us-cert.gov/cas/techalerts/TA05-347A.html	Third Party Advisory US Government Resource
http://www.us-cert.gov/cas/techalerts/TA06-220A.html	Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2005/1450	Broken Link
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-052
https://exchange.xforce.ibmcloud.com/vulnerabilities/21895	VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/34754	VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1155
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1454
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1464
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1468
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1535
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1538

URL

タグ

http://isc.sans.org/diary.php?date=2005-08-18

Third Party Advisory

http://secunia.com/advisories/16480

Patch Vendor Advisory

http://secunia.com/advisories/17172

Permissions Required Third Party Advisory

http://secunia.com/advisories/17223

Permissions Required Third Party Advisory

http://secunia.com/advisories/17509

Permissions Required Third Party Advisory