74 matches found
CVE-2005-4560
The Windows Graphical Device Interface library GDI32.DLL in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile WMF format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer SHIMGVW.DLL, a different...
CVE-2005-4560
CVE-2005-4560 is a Windows GDI/WMF parsing vulnerability in GDI32.DLL that allows remote code execution via a crafted WMF image using the SETABORTPROC GDI Escape function, with SHIMGVW.DLL involved. The issue is tied to WMF/EMF processing in Windows, and public details describe arbitrary code exe...
CVE-2005-2123
Multiple integer overflows in the Graphics Rendering Engine GDI32.DLL in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows Metafile WMF and Enhanced Metafile EMF format images that lead to heap-based buffer overflows, as...
CVE-2005-2124
Unspecified vulnerability in the Graphics Rendering Engine GDI32.DLL in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, related to "An unchecked buffer" and possibly buffer overflows, allows remote attackers to execute arbitrary code via a crafted Windows Metafile WMF format image, aka...
CVE-2005-2123
Multiple integer overflows in the Graphics Rendering Engine GDI32.DLL in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows Metafile WMF and Enhanced Metafile EMF format images that lead to heap-based buffer overflows, as...
CVE-2005-2123
CVE-2005-2123 affects the Windows GDI32.DLL Graphics Rendering Engine, with heap-based buffer overflows triggered by crafted WMF/EMF image data. Affected systems include Windows 2000 SP4, XP SP1/SP2, and Server 2003 SP1. Root cause is overflow/unchecked size handling in image rendering, enabling ...
CVE-2005-2124
The CVE-2005-2124 entry concerns a vulnerability in the Windows Graphics Rendering Engine (GDI32.DLL) affecting Windows 2000 SP4, XP SP1/SP2, and Server 2003 SP1. The flaw stems from an unchecked buffer in WMF handling, enabling remote code execution via a crafted Windows Metafile image. Exploita...
Microsoft Windows Metafile - gdi32.dll Denial of Service (MS05-053)
Microsoft Windows Metafile - gdi32.dll Denial of Service MS05-053 / Author: Winny Thomas Pune, INDIA The crafted metafile from this code when viewed in internet explorer raises the CPU utilization to 100%. The code was tested on Windows 2000 server SP4. The issue does not occur with the hotfix fo...
MS Windows Metafile (gdi32.dll) Denial of Service Exploit (MS05-053)
Exploit for unknown platform in category dos / poc ==================================================================== MS Windows Metafile gdi32.dll Denial of Service Exploit MS05-053 ==================================================================== / Author: Winny Thomas Pune, INDIA The...
Microsoft Windows Metafile - 'gdi32.dll' Denial of Service (MS05-053)
/ Author: Winny Thomas Pune, INDIA The crafted metafile from this code when viewed in internet explorer raises the CPU utilization to 100%. The code was tested on Windows 2000 server SP4. The issue does not occur with the hotfix for GDI MS05-053 installed Disclaimer: This code is for...
CVE-2005-0803
The GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 allows remote attackers to cause a denial of service application crash via a crafted Enhanced Metafile EMF file that causes invalid 1 end, 2 emreof, or 3 palent offsets to be used, aka "Enhanced Metafile Vulnerability."...
CVE-2005-0803
CVE-2005-0803 is an EMF/WMF rendering vulnerability in Windows. The Enhanced Metafile rendering API in GDI32.DLL can crash or be exploited remotely when a specially crafted EMF/WMF file is processed, due to an unchecked buffer/invalid offsets (end, emreof, palent). Affects Windows 2000, Windows X...
CVE-2005-0803
The GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 allows remote attackers to cause a denial of service application crash via a crafted Enhanced Metafile EMF file that causes invalid 1 end, 2 emreof, or 3 palent offsets to be used, aka "Enhanced Metafile Vulnerability."...
Windows 2000 GDI32.DLL GetEnhMetaFilePaletteEntries() API specially crafted EMF file DOS vulnerability
Windows 2000 GDI32.DLL GetEnhMetaFilePaletteEntries API specially crafted EMF file DOS vulnerability 1. Description Windows 2000 GDI32.DLL GetEnhMetaFilePaletteEntries API doesn't process the EMF file properly, a application which calls the API will crash when it reads some specially crafted EMF...