VDB
CVE-2005-4560
CVE-2005-4560
PUBLISHED
CVSS 7.5 HIGH
The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.
EPSS 90.27% · 99.6th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
90.27%
99.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | windows_2003_server | *, enterprise, r2 |
| n/a | n/a | n/a |
| microsoft | windows_xp |
Timeline
- Dec 28, 2005 CVE Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://secunia.com/advisories/18255 advisory
- http://vil.mcafeesecurity.com/vil/content/v_137760.htm url
- 20051228 Re: Is this a new exploit? mailing-list
- http://www.f-secure.com/weblog/archives/archive-122005.html#00000753 url
- 20051228 WMF Exploit mailing-list
- oval:org.mitre.oval:def:1492 vdb
- 20051228 RE: [Full-disclosure] Someone wasted a nice bug on spyware... mailing-list
- oval:org.mitre.oval:def:1564 vdb
- oval:org.mitre.oval:def:1612 vdb
- ADV-2005-3086 vdb
- 1015416 vdb
- 20051227 Exploitation of Windows WMF on the web mailing-list
- 20051229 WMF exploit mailing-list
- win-wmf-execute-code(23846) vdb
- 18364 third-party-advisory
- 20060104 Another WMF exploit workaround mailing-list
- 18415 third-party-advisory
- 20060101 Re: RE: WMF Exploit mailing-list
- 20060103 Re: [funsec] WMF round-up, updates and de-mystification mailing-list
- 20060103 WMF round-up, updates and de-mystification mailing-list
…and 18 more