CVE-2005-2940

CVE Database · CVE-2005-2940

CVE-2005-2940

· N/AModified

CVSS v3.1

N/A

EPSS

2.34%

Published

Nov 18, 2005

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the programs (1) GIANTAntiSpywareMain.exe, (2) gcASNotice.exe, (3) gcasServ.exe, (4) gcasSWUpdater.exe, or (5) GIANTAntiSpywareUpdater.exe. NOTE: it is not clear whether this overlaps CVE-2005-2935.

Affected Products (1)

microsoft · antispywarevulnerable

References (6)

http://securitytracker.com/id?1015226

http://www.idefense.com/application/poi/display?id=340&type=vulnerabilities

Vendor Advisory

http://www.securityfocus.com/bid/15448

http://securitytracker.com/id?1015226

http://www.idefense.com/application/poi/display?id=340&type=vulnerabilities

Vendor Advisory

http://www.securityfocus.com/bid/15448

KEV Catalog EPSS Scores Vendors All CVEs