CVE-2005-2118
Description
Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote user-assisted attackers to execute arbitrary commands via a crafted shortcut (.lnk) file with long font properties that lead to a buffer overflow when the user views the file's properties using Windows Explorer, a different vulnerability than CVE-2005-2122.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A crafted shortcut (.lnk) file with long font properties can cause a buffer overflow, allowing remote code execution when viewed in Windows Explorer.
Vulnerability
A buffer overflow vulnerability exists in the Windows Shell component of Microsoft Windows 2000 SP4, Windows XP SP1 and SP2, and Windows Server 2003 (including SP1 and x64 Editions). When a user views the properties of a specially crafted shortcut (.lnk) file with overly long font properties using Windows Explorer, the vulnerability can be triggered. This allows remote code execution on the affected system. This is a different vulnerability than CVE-2005-2122 [1].
Exploitation
An attacker must convince the user to open a folder containing the crafted .lnk file or view its properties, typically through email attachment, a malicious website, or network share. The user must then interact by viewing the file's properties in Windows Explorer. No authentication or advanced privileges are required for the attacker to deliver the payload, but user interaction is necessary [1].
Impact
Successful exploitation allows an attacker to execute arbitrary code on the affected system. If the user has administrative privileges, the attacker can gain complete control, install programs, view/change/delete data, or create new accounts with full user rights [1].
Mitigation
The security update provided in Microsoft Security Bulletin MS05-049 addresses this vulnerability. All affected Windows versions should apply the update released on October 11, 2005. No workarounds are mentioned in the available references [1].
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
13cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*+ 5 more
- cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
- Range: <=2003
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- secunia.com/advisories/17168nvdVendor Advisory
- secunia.com/advisories/17172nvdVendor Advisory
- secunia.com/advisories/17223nvdVendor Advisory
- www.argeniss.com/research/MSBugPaper.pdfnvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA05-284A.htmlnvdThird Party AdvisoryUS Government Resource
- securitytracker.com/idnvd
- support.avaya.com/elmodocs2/security/ASA-2005-214.pdfnvd
- www.securityfocus.com/bid/15070nvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-049nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1116nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1192nvd
News mentions
0No linked articles in our index yet.