OSVDB ID: 20580

Title: Microsoft Windows GetEnhMetaFilePaletteEntries() EMF File Rendering DoS

Info

Disclosure

Nov 08, 2005

Discovery

Mar 17, 2005

Dates

Exploit

Mar 17, 2005

Solution

Unknown

Description

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed EMF file is processed by the GetEnhMetaFilePaletteEntries() function, and will result in loss of availability for the application.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
	Windows Server	2003
		2003 for Itanium
		2003 x64 Edition

References

Bugtraq ID: 12834
SCIP VulDB ID: 1291
Secunia Advisory ID: 14631 17461
CVE ID: 2005-0803 (see also: NVD)
Microsoft Knowledge Base Article: 896424
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=111108743527497&w=2
Generic Informational URL: http://news.com.com/Image-handling+flaws+put+Windows+PCs+at+risk/2100-1002_3-5940047.html
Vendor Specific Advisory URL: http://support.avaya.com/elmodocs2/security/ASA-2005-228.pdf
Microsoft Security Bulletin: MS05-053

Credit

Felix Zhou - felix_zhouhotmail.com -

Direct URL: http://osvdb.org/20580

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit