Alias(es)Windows.WMF.Rendering.Engine.Heap.Overflow.A |
Release DateNov 08, 2005 |
Severityhigh |
ImpactSystem Compromise |
DescriptionThis indicates an attack attempt to exploit a heap-based overflow vulnerability in Microsoft Windows Graphics Rendering Engine for Windows Metafile (WMF) and Enhanced Metafile (EMF) file formats. The vulnerability can be triggered by specially crafted WMF and EMF files. |
Affected ProductsMicrosoft Windows 2000 Service Pack 4Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 Microsoft Windows XP Professional x64 Edition Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems Microsoft Windows Server 2003 x64 Edition |
Recommended ActionsApply patch, available from the web site.http://www.microsoft.com/technet/security/Bulletin/MS05-053.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2005-2123 |
Reference/shttp://www.securityfocus.com/bid/15352 (BugTraq)http://www.microsoft.com/technet/security/Bulletin/MS05-053.mspx (MS-ID) |
