Published: 28/12/2005 Updated: 19/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Subscribe to Windows 2003 Server

The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote malicious users to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 2003 server standard
microsoft windows 2003 server web
microsoft windows xp
microsoft windows 2003 server enterprise
microsoft windows 2003 server r2

Debian Bug report logs - #346197 [CVE-2006-0106] Wine is vulnerable to SetAbortProc WMF bug Package: wine; Maintainer for wine is Debian Wine Party <debian-wine@listsdebianorg>; Source for wine is src:wine (PTS, buildd, popcon) Reported by: Florian Weimer <fw@denebenyode> Date: Fri, 6 Jan 2006 10:18:01 UTC Seve ...

## # $Id: ms06_001_wmf_setabortprocrb 10394 2010-09-20 08:06:27Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/co ...

CWE-20 http://www.f-secure.com/weblog/archives/archive-122005.html#00000753 http://vil.mcafeesecurity.com/vil/content/v_137760.htm http://www.kb.cert.org/vuls/id/181038 http://www.securityfocus.com/bid/16074 http://secunia.com/advisories/18255 http://www.microsoft.com/technet/security/advisory/912840.mspx http://securitytracker.com/id?1015416 http://linuxbox.org/pipermail/funsec/2006-January/002455.html http://www.us-cert.gov/cas/techalerts/TA05-362A.html http://www.us-cert.gov/cas/techalerts/TA06-005A.html http://support.avaya.com/elmodocs2/security/ASA-2006-001.htm http://secunia.com/advisories/18364 http://secunia.com/advisories/18311 http://secunia.com/advisories/18415 http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375341 http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420 http://www.vupen.com/english/advisories/2005/3086 https://exchange.xforce.ibmcloud.com/vulnerabilities/23846 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1612 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1564 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1492 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1460 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1433 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1431 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-001 http://www.securityfocus.com/archive/1/420773/100/0/threaded http://www.securityfocus.com/archive/1/420687/100/0/threaded http://www.securityfocus.com/archive/1/420684/100/0/threaded http://www.securityfocus.com/archive/1/420682/100/0/threaded http://www.securityfocus.com/archive/1/420664/30/7730/threaded http://www.securityfocus.com/archive/1/420546/30/7730/threaded http://www.securityfocus.com/archive/1/420446/100/0/threaded http://www.securityfocus.com/archive/1/420378/100/0/threaded http://www.securityfocus.com/archive/1/420367/100/0/threaded http://www.securityfocus.com/archive/1/420357/100/0/threaded http://www.securityfocus.com/archive/1/420351/100/0/threaded http://www.securityfocus.com/archive/1/420288/100/0/threaded https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346197 https://nvd.nist.gov https://www.exploit-db.com/exploits/16612/https://www.kb.cert.org/vuls/id/181038

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook