| VID |
26197 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (MS06-022, KB918439) for 'Vulnerability in ART Image Rendering' has not been applied. Microsoft Windows 2000 SP4, Windows XP SP2, Server 2003 SP1, and Windows 98 and Me are vulnerable to a remote code execution attack, caused by a buffer overflow vulnerability in the ART image rendering most commonly used by America Online. By constructing a specially crafted AOL ART image, a remote attacker could overflow a buffer and execute arbitrary code on the system with privileges of the victim, once the malicious image is viewed in Internet Explorer. The attacker could exploit this vulnerability by sending the malicious image to a victim as an email messages or hosting it on a Web site, and then persuading a potential victim to visit the site. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms06-022.mspx
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=407
* Platforms Affected:
Microsoft Windows 2000 with the Windows 2000 AOL Image Support Update installed
Microsoft Windows 2000 SP4 with Internet Explorer 5.01 SP4
Microsoft Windows 2000 SP4 with Internet Explorer 6 SP1
Microsoft Windows XP Any version SP2
Microsoft Windows Server 2003 SP1 |
| Recommendation |
Apply the appropriate patch (KB918439) for your system, as listed in Microsoft Security Bulletin MS06-022 at http://www.microsoft.com/technet/security/bulletin/ms06-022.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2006-2218,CVE-2006-2382,CVE-2006-2383,CVE-2006-1303,CVE-2005-4089,CVE-2006-2384,CVE-2006-2385,CVE-2006-1626 (CVE) |
| Related URL |
18303,18309,18320,18321,18328 (SecurityFocus) |
| Related URL |
23571,25557,25634,26762,26774,26777 (ISS) |
|
