cpe:/o:microsoft:windows_2000:::advanced_server cpe:/o:microsoft:windows_2000:::datacenter_server cpe:/o:microsoft:windows_2000:::professional cpe:/o:microsoft:windows_2000:::server cpe:/o:microsoft:windows_2000::sp1:advanced_server cpe:/o:microsoft:windows_2000::sp1:datacenter_server cpe:/o:microsoft:windows_2000::sp1:professional cpe:/o:microsoft:windows_2000::sp1:server cpe:/o:microsoft:windows_2000::sp2:advanced_server cpe:/o:microsoft:windows_2000::sp2:datacenter_server cpe:/o:microsoft:windows_2000::sp2:professional cpe:/o:microsoft:windows_2000::sp2:server cpe:/o:microsoft:windows_2000::sp3:advanced_server cpe:/o:microsoft:windows_2000::sp3:datacenter_server cpe:/o:microsoft:windows_2000::sp3:professional cpe:/o:microsoft:windows_2000::sp3:server cpe:/o:microsoft:windows_2000::sp4:advanced_server cpe:/o:microsoft:windows_2000::sp4:datacenter_server cpe:/o:microsoft:windows_2000::sp4:professional cpe:/o:microsoft:windows_2000::sp4:server cpe:/o:microsoft:windows_2003_server:enterprise::64-bit cpe:/o:microsoft:windows_2003_server:r2::64-bit cpe:/o:microsoft:windows_2003_server:standard::64-bit cpe:/o:microsoft:windows_2003_server:web cpe:/o:microsoft:windows_98::gold cpe:/o:microsoft:windows_98se cpe:/o:microsoft:windows_me cpe:/o:microsoft:windows_xp:::home cpe:/o:microsoft:windows_xp:::media_center cpe:/o:microsoft:windows_xp::gold:professional cpe:/o:microsoft:windows_xp::sp1:64-bit cpe:/o:microsoft:windows_xp::sp1:home cpe:/o:microsoft:windows_xp::sp1:media_center cpe:/o:microsoft:windows_xp::sp2:home cpe:/o:microsoft:windows_xp::sp2:media_center cpe:/o:microsoft:windows_xp::sp2:tablet_pc CVE-2005-0063 2005-05-02T00:00:00.000-04:00 2017-10-10T21:29:49.717-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2016-11-02T11:34:45.483-04:00 ALLOWS_USER_ACCESS BID 13132 IDEFENSE 20050412 Microsoft MSHTA Script Execution Vulnerability BUGTRAQ 20050529 Spam exploiting MS05-016 VUPEN ADV-2005-0335 MS MS05-016 MISC http://www.securiteam.com/exploits/5YP0T0AFFW.html The document processing application used by the Windows Shell in Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code by modifying the CLSID stored in a file so that it is processed by HTML Application Host (MSHTA), as demonstrated using a Microsoft Word document.