CVE-2005-2123 Information

Description

Multiple integer overflows in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4 XP SP1 and SP2 and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows Metafile (WMF) and Enhanced Metafile (EMF) format images that lead to heap-based buffer overflows as demonstrated using MRBP16::bCheckRecord.

Reference

http://secunia.com/advisories/17223 http://secunia.com/advisories/17461 http://secunia.com/advisories/17498 http://securitytracker.com/id?1015168 http://support.avaya.com/elmodocs2/security/ASA-2005-228.pdf http://www.eeye.com/html/research/advisories/AD20051108b.html http://www.kb.cert.org/vuls/id/300549 http://www.securityfocus.com/bid/15352 http://www.us-cert.gov/cas/techalerts/TA05-312A.html http://www.vupen.com/english/advisories/2005/2348 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-053 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1063 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1175 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1263 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1546 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A701