JVN/CVE Demo: Cveinfos

CVE

Id: 13293
CVE No.: CVE-2005-2087
Status: Candidate
Description: Internet Explorer 5.01 SP4 up to 6 on various Windows operating systems, including IE 6.0.2900.2180 on Windows XP, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not ActiveX controls, as demonstrated using the JVIEW Profiler (Javaprxy.dll). NOTE: the researcher says that the vendor could not reproduce this problem.
Phase: Assigned (20050630)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
95807	13293	CVE-2005-2087	BUGTRAQ:20050629 SEC-CONSULT SA-20050629-0	View
95808	13293	CVE-2005-2087	URL:http://marc.info/?l=bugtraq&m=112006764714946&w=2	View
95809	13293	CVE-2005-2087	MISC:http://www.microsoft.com/technet/security/advisory/903144.mspx	View
95810	13293	CVE-2005-2087	BUGTRAQ:20050702 Microsoft Internet Explorer "javaprxy.dll" Code Execution Exploit	View
95811	13293	CVE-2005-2087	URL:http://www.securityfocus.com/archive/1/404055	View
95812	13293	CVE-2005-2087	MS:MS05-037	View
95813	13293	CVE-2005-2087	URL:http://www.microsoft.com/technet/Security/bulletin/ms05-037.mspx	View
95814	13293	CVE-2005-2087	AUSCERT:ESB-2005.0489	View
95815	13293	CVE-2005-2087	URL:http://www.auscert.org.au/render.html?it=5225	View
95816	13293	CVE-2005-2087	CERT:TA05-193A	View
95817	13293	CVE-2005-2087	URL:http://www.us-cert.gov/cas/techalerts/TA05-193A.html	View
95818	13293	CVE-2005-2087	CERT-VN:VU#939605	View
95819	13293	CVE-2005-2087	URL:http://www.kb.cert.org/vuls/id/939605	View
95820	13293	CVE-2005-2087	CERT-VN:VU#959049	View
95821	13293	CVE-2005-2087	URL:http://www.kb.cert.org/vuls/id/959049	View
95822	13293	CVE-2005-2087	BID:14087	View
95823	13293	CVE-2005-2087	URL:http://www.securityfocus.com/bid/14087	View
95824	13293	CVE-2005-2087	VUPEN:ADV-2005-0935	View
95825	13293	CVE-2005-2087	URL:http://www.vupen.com/english/advisories/2005/0935	View
95826	13293	CVE-2005-2087	OSVDB:17680	View
95827	13293	CVE-2005-2087	URL:http://www.osvdb.org/17680	View
95828	13293	CVE-2005-2087	OVAL:oval:org.mitre.oval:def:1326	View
95829	13293	CVE-2005-2087	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1326	View
95830	13293	CVE-2005-2087	OVAL:oval:org.mitre.oval:def:1506	View
95831	13293	CVE-2005-2087	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1506	View
95832	13293	CVE-2005-2087	OVAL:oval:org.mitre.oval:def:1518	View
95833	13293	CVE-2005-2087	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1518	View
95834	13293	CVE-2005-2087	OVAL:oval:org.mitre.oval:def:793	View
95835	13293	CVE-2005-2087	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:793	View
95836	13293	CVE-2005-2087	SECTRACK:1014329	View
95837	13293	CVE-2005-2087	URL:http://securitytracker.com/id?1014329	View
95838	13293	CVE-2005-2087	SECUNIA:15891	View
95839	13293	CVE-2005-2087	URL:http://secunia.com/advisories/15891	View
95840	13293	CVE-2005-2087	XF:ie-javaprxydll-execute-code(21193)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.30 MB
View render complete	2.75 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.85
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	618.80
Event: Controller.beforeRender	4.66
» Processing toolbar data	4.56
Rendering View	12.18
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	10.46
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	1.20
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.16
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/13293
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/13293
Remote Port	32945
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.35
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.236.212
Http Via	1.1 squid-proxy-5b5d847c96-l5zvn (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.35
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.35
Unique Id	aLBpS8mB2fPcvReiSwohcgAAAcc
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.35
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.35
Redirect Unique Id	aLBpS8mB2fPcvReiSwohcgAAAcc
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.35
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.35
Redirect Redirect Unique Id	aLBpS8mB2fPcvReiSwohcgAAAcc
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1756391755.584
Request Time	1756391755

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files