VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 21, 2005· Updated Apr 16, 2026

CVE-2005-2122

CVE-2005-2122

Description

Windows Shell for Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to execute arbitrary commands via a shortcut (.lnk) file with long font properties that lead to a buffer overflow in the Client/Server Runtime Server Subsystem (CSRSS), a different vulnerability than CVE-2005-2118.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A buffer overflow in Windows Shell's handling of shortcut (.lnk) files with long font properties allows remote code execution via CSRSS.

Vulnerability

A buffer overflow vulnerability exists in the Windows Shell component of Microsoft Windows 2000 SP4, Windows XP SP1 and SP2, and Windows Server 2003 (including SP1 and x64 editions) when processing shortcut (.lnk) files with overly long font properties. This overflow occurs in the Client/Server Runtime Server Subsystem (CSRSS), allowing an attacker to corrupt memory. The vulnerability is distinct from CVE-2005-2118. [1][2]

Exploitation

An attacker must craft a malicious .lnk file with specially crafted font properties that trigger the buffer overflow when the file is opened by the user. The attacker can deliver the file via email, a web link, or other means that cause the user to open the shortcut. No authentication is required, and the user interaction is limited to opening the file. [1][2]

Impact

Successful exploitation allows remote code execution with the privileges of the user. If the user has administrative rights, the attacker can gain complete control of the system, install programs, view/change data, or create new accounts. The vulnerability is rated Important by Microsoft. [1][2]

Mitigation

Microsoft released security update MS05-049 on October 11, 2005, which addresses this vulnerability for all affected Windows versions. Customers should apply the update at the earliest opportunity. No workarounds are documented in the available references. [1]

References
  1. Microsoft Security Bulletin MS05-049 - Important
  2. CERT/CC Vulnerability Note VU#922708

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

13
  • Microsoft/Windows 20005 versions
    cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • Microsoft/Windows Server 2003
    cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
  • Microsoft/Windows Xp6 versions
    cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*+ 5 more
    • cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_xp:*:sp2:tablet_pc:*:*:*:*:*
  • Microsoft/Windows Shellllm-fuzzy
    Range: Windows 2000 SP4, Windows XP SP1/SP2, Windows Server 2003

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

16

News mentions

0

No linked articles in our index yet.