CVE-2005-4560

Published: Dec 28, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.

Affected (16)

Products: Microsoft: Windows 2003 Server, Windows Xp

Microsoft

2 products

Windows 2003 Server

Windows Xp

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2003 Server	Version enterprise
Microsoft Windows 2003 Server	Version enterprise sp1
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 2003 Server	Version r2 sp1
Microsoft Windows 2003 Server	Version standard
Microsoft Windows 2003 Server	Version standard sp1
Microsoft Windows 2003 Server	Version web
Microsoft Windows 2003 Server	Version web sp1
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (74)

http://linuxbox.org/pipermail/funsec/2006-January/002455.html

Source: cve@mitre.org

http://secunia.com/advisories/18255

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/18311

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/18364

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/18415

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015416

Source: cve@mitre.org

Exploit

http://support.avaya.com/elmodocs2/security/ASA-2006-001.htm

Source: cve@mitre.org

Vendor Advisory

http://vil.mcafeesecurity.com/vil/content/v_137760.htm

Source: cve@mitre.org

Vendor Advisory

http://www.f-secure.com/weblog/archives/archive-122005.html#00000753

Source: cve@mitre.org

ExploitVendor Advisory

http://www.kb.cert.org/vuls/id/181038

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.microsoft.com/technet/security/advisory/912840.mspx

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/archive/1/420288/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420351/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420357/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420367/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420378/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420446/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420546/30/7730/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420664/30/7730/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420682/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420684/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420687/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420773/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/16074

Source: cve@mitre.org

Exploit

http://www.us-cert.gov/cas/techalerts/TA05-362A.html

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA06-005A.html

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2005/3086

Source: cve@mitre.org

Vendor Advisory

http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375341

Source: cve@mitre.org

http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-001

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/23846

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1431

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1433

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1460

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1492

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1564

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1612

Source: cve@mitre.org

http://linuxbox.org/pipermail/funsec/2006-January/002455.html