Bugtraq ID: 16074

Class: Unknown

CVE: CVE-MAP-NOMATCH

Remote: Yes

Local: Yes

Published: Dec 28 2005 12:00AM

Updated: Dec 28 2005 12:57AM

Microsoft Windows WMF graphics rendering engine is affected by a remote code execution vulnerability.
The
problem presents itself when a user views a malicious WMF formatted
file, triggering the vulnerability when the engine attempts to parse
the file.
The issue may be exploited remotely or by a local
attacker. Any code execution that occurs will be with SYSTEM privileges
due to the nature of the affected engine.
Microsoft Windows XP
is considered to be vulnerable at the moment. It is likely that other
Windows operating systems are affected as well.

Vulnerable Systems:

Microsoft Windows XP Tablet PC Edition SP2

Microsoft Windows XP Tablet PC Edition SP1

Microsoft Windows XP Tablet PC Edition

Microsoft Windows XP Professional SP2

Microsoft Windows XP Professional SP1

Microsoft Windows XP Professional

Microsoft Windows XP Media Center Edition SP2

Microsoft Windows XP Media Center Edition SP1

Microsoft Windows XP Media Center Edition

Microsoft Windows XP Home SP2

Microsoft Windows XP Home SP1

Microsoft Windows XP Home

Securityfocus
Secunia
FrSIRT