| VID |
26174 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (KB896424) for 'Code Execution Vulnerabilities in Graphics Rendering Engine' has not been applied. Microsoft Windows 2000 SP4, Windows XP SP2 and Windows Server 2003 SP1 are vulnerable to multiple vulnerabilities that can allow a remote attacker to execute arbitrary code as follows:
1) Graphics Rendering Engine Vulnerability (CAN-2005-2123): Remote Code Execution
2) Windows Metafile Vulnerability (CAN-2005-2124): Remote Code Execution
3) Enhanced Metafile Vulnerability (CAN-2005-0803): Denial of Service
By sending specially-crafted Windows Metafile (WMF) and Enhanced Metafile (EMF) image files to a victim as an email attachment and tricking the victim into opening the attachment or by hosting it on a Web site and persuading the victim to visit the Web site, a remote attacker can execute arbitrary code on the system, and possibly cause a denial of service attack. A local attacker could exploit this vulnerability to obtain elevated privileges.
* References:
http://www.microsoft.com/technet/security/bulletin/ms05-053.mspx
* Platforms Affected:
Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows Server 2003 SP1 |
| Recommendation |
Apply the appropriate patch (KB896424) for your system, as listed in Microsoft Security Bulletin MS05-053 at http://www.microsoft.com/technet/security/bulletin/ms05-053.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site at http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2005-2127 (CVE) |
| Related URL |
15061 (SecurityFocus) |
| Related URL |
21895,22155 (ISS) |
|
