Launchpad CVE tracker

CVE 2005-4560

The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.

Related bugs and status

CVE-2005-4560 (Candidate) is related to these bugs:

Bug #141073: Remote DoS and Remote execution

Summary				In	Importance	Status
	141073	Remote DoS and Remote execution		clamav (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.f-secure.co...
MISC: http://vil.mcafeesecur...
MISC: http://www.microsoft.c...
CERT-VN: VU#181038
BID: 16074
SECTRACK: 1015416
SECUNIA: 18255
MISC: http://linuxbox.org/pi...
CERT: TA05-362A
CERT: TA06-005A
MISC: http://support.avaya.c...
SECUNIA: 18364
SECUNIA: 18311
SECUNIA: 18415
VUPEN: ADV-2005-3086
MISC: http://www130.nortelne...
MISC: http://www130.nortelne...
XF: win-wmf-execute-code(2...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
MS: MS06-001
BUGTRAQ: 20051227 Is this a new...
BUGTRAQ: 20051228 Re: Is this a...
BUGTRAQ: 20051227 Exploitation ...
BUGTRAQ: 20051228 RE: [Full-dis...
BUGTRAQ: 20051228 WMF Exploit
BUGTRAQ: 20051229 WMF exploit
BUGTRAQ: 20060103 WMF SETABORTP...
BUGTRAQ: 20060103 WMF round-up,...
BUGTRAQ: 20060103 Re: [funsec] ...
BUGTRAQ: 20060104 Another WMF e...
BUGTRAQ: 20051229 RE: WMF Exploit
BUGTRAQ: 20060101 Re: RE: WMF E...

Launchpad.net

CVE 2005-4560

Related bugs and status

Related bugs

References