The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-12-28 11:03
Updated : 2018-10-19 08:41
NVD link : CVE-2005-4560
Mitre link : CVE-2005-4560
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
microsoft
- windows_xp
- windows_2003_server