CVE-2005-1978

Microsoft Windows - RCE

Title source: llm

Description

COM+ in Microsoft Windows does not properly "create and use memory structures," which allows local users or remote attackers to execute arbitrary code.

Exploits (1)

exploitdb WORKING POC
cppremotewindows
https://www.exploit-db.com/exploits/1352

References (15)

Scores

EPSS 0.4804
EPSS Percentile 97.7%

Details

Status published
Products (6)
microsoft/windows_2000
microsoft/windows_2003_server 64-bit
microsoft/windows_2003_server itanium
microsoft/windows_2003_server r2
microsoft/windows_2003_server sp1 (2 CPE variants)
microsoft/windows_xp (3 CPE variants)
Published Oct 12, 2005
Tracked Since Feb 18, 2026