7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.973 High
EPSS
Percentile
99.9%
Added: 12/30/2005
CVE: CVE-2005-4560
BID: 16074
OSVDB: 21987
A Windows Metafile (WMF) image is a 16-bit metafile format that can contain both vector information and bitmap information.
A flaw in the way specially crafted WMF images are handled can allow arbitrary command execution when the image is rendered.
Apply one of the workarounds referenced in Microsoft Advisory 912840.
<http://www.microsoft.com/technet/security/advisory/912840.mspx>
Exploit works on Internet Explorer 6.0.
Windows