Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Windows XP/2003 Picture and Fax Viewer / Wine / ME code execution
updated since 28.12.2005
Published:14.07.2006
Source:
SecurityVulns ID:5578
Type:client
Threat Level:
9/10
Description:Buffer overflow on parsing WMF metafiles. It may be used for silent Spyware/Trojan installation with Internet Explorer or another browser and also with Lotus Notes. There are vulnerabilities not covered by MS06-001.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 IBM : Lotus Notes 6.5
 WINE : Wine 0.9
Original documentdocumentSYMANTEC, SYMSA-2006-004 (Full Details): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (14.07.2006)
 documentSYMANTEC, SYMSA-2006-004: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (14.06.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-026 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547) (13.06.2006)
 documentfrankruder_(at)_hotmail.com, Microsoft Windows GRE WMF Format Multiple Memory Overrun Vulnerabilities (10.01.2006)
 documentfrankruder_(at)_hotmail.com, [UPDATE]Microsoft Windows GRE WMF Format Multiple Unauthorized Memory Access Vulnerabilities (10.01.2006)
 documentMICROSOFT, Microsoft Security Bulletin MS06-001 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919) (07.01.2006)
 documentCERT, US-CERT Technical Cyber Security Alert TA06-005A -- Update for Microsoft Windows Metafile Vulnerability (07.01.2006)
 documentJuha-Matti Laurio, Lotus Notes WMF File Handling Code Execution Vulnerability (30.12.2005)
 documentCERT, US-CERT Technical Cyber Security Alert TA05-362A -- Microsoft Windows Metafile Handling Buffer Overflow (29.12.2005)
 documentX-FORCE, ISS Protection Alert: Windows Picture and Fax Viewer WMF Overflow (29.12.2005)
 documentH D Moore, [Full-disclosure] Someone wasted a nice bug on spyware... (28.12.2005)
 documentnoemailpls_(at)_noemail.ziper, Is this a new exploit? (28.12.2005)
Files:Windows XP/2003 Picture and Fax Viewer Metafile Overflow
 WMF nDay download() Exploit Generator by Unl0ck Research Team
 Microsoft Security Bulletin MS06-001 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919)
 Microsoft Security Bulletin MS06-026 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod