Overview
Microsoft Windows Graphics Rendering Engine contains a buffer overflow that may allow a remote attacker to execute arbitrary code on a vulnerable system.
Description
The Microsoft Windows Graphics Rendering Engine supports a number of image formats including Windows Metafile (WMF) and Enhanced Metafile (EMF). The Windows Graphics Rendering Engine fails to properly validate WMF and EMF image files. This may allow a remote attacker to manipulate memory allocation routines to create an under-sized buffer. When data is copied to this buffer, a heap-based buffer overflow may occur. Note that according to public reports, this vulnerability may also affect the Graphical Device Interface (GDI) subsystem. |
Impact
By persuading a user to open a specially crafted WMF or EMF image file, an attacker may be able to execute arbitrary code with the privileges of the user. |
Solution
Apply an update Microsoft has addressed this issue in Microsoft Security Bulletin MS05-053. |
Do not accept WMF or EMF files from untrusted sources
|
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported in Microsoft Security Bulletin MS05-053. Microsoft credits eEye Digital Security and Symantec Security Response for
This document was written by Jeff Gennari.
Other Information
| CVE IDs: | CVE-2005-2123 |
| Severity Metric: | 13.37 |
| Date Public: | 2005-11-08 |
| Date First Published: | 2005-11-08 |
| Date Last Updated: | 2006-02-08 19:38 UTC |
| Document Revision: | 15 |