mirror of
https://github.com/0xMarcio/cve.git
synced 2026-02-13 03:02:49 +00:00
973 B
973 B
CVE-2005-0803
Description
The GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 allows remote attackers to cause a denial of service (application crash) via a crafted Enhanced Metafile (EMF) file that causes invalid (1) end, (2) emreof, or (3) palent offsets to be used, aka "Enhanced Metafile Vulnerability."
POC
Reference
- http://marc.info/?l=bugtraq&m=111108743527497&w=2
- http://support.avaya.com/elmodocs2/security/ASA-2005-228.pdf
- http://www.kb.cert.org/vuls/id/134756
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-053