Info

Disclosure

Oct 12, 2004

Discovery

Unknown

Dates

Exploit

Oct 19, 2004

Solution

Unknown

Description

A local overflow exists in Windows. The Graphics Rendering Engine fails to validate Windows Metafile (WMF) and Enhanced Metafile (EMF) image files resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP4
		2000 SP3
		XP SP1
		XP
		XP 64-Bit SP1
		2003 Server x64
		2003 Server

References

Security Tracker: 1011645
Related OSVDB ID: 10690 10691 10693
Bugtraq ID: 11375
Secunia Advisory ID: 12804
ISS X-Force ID: 16581 17658
OVAL ID: 1872 2114 2428
CVE ID: 2004-0209 (see also: NVD)
Milw0rm: 584
Exploit Database: 584
CERT VU: 806278
Microsoft Knowledge Base Article: 840987
SCIP VulDB ID: 889
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-10/0201.html
http://marc.theaimsgroup.com/?l=bugtraq&m=109829067325779&w=2
Generic Exploit URL: http://www.saintcorporation.com/cgi-bin/exploit_info/windows_metafile
Microsoft Security Bulletin: MS04-032

Credit

Patrick Porlan - porlanfree.fr -

Direct URL: http://osvdb.org/10692

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit