Unrated severityNVD Advisory· Published May 2, 2005· Updated Apr 16, 2026

CVE-2005-1187

Description

Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.

Affected products

X Ways Software Technology Ag/Winhex
cpe:2.3:a:x-ways_software_technology_ag:winhex:12.05_sr-14:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.unl0ck.org/files/papers/winhex.txtnvdURL Repurposed
securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/20139nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000