Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/01/2006 Updated: 12/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Windows 2000

An unspecified Microsoft WMF parsing application, as used in Internet Explorer 5.01 SP4 on Windows 2000 SP4, and 5.5 SP2 on Windows Millennium, and possibly other versions, allows malicious users to cause a denial of service (crash) and possibly execute code via a crafted WMF file with a manipulated WMF header size, possibly involving an integer overflow, a different vulnerability than CVE-2005-4560, and aka "WMF Image Parsing Memory Corruption Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 2000
microsoft windows 2003 server r2
microsoft windows me
microsoft windows xp
microsoft windows 2003 server sp1
microsoft windows 98
microsoft windows 98se

CWE-189 http://linuxbox.org/pipermail/funsec/2006-January/002828.html http://www.microsoft.com/technet/security/advisory/913333.mspx http://www.kb.cert.org/vuls/id/312956 http://www.securityfocus.com/bid/16516 http://secunia.com/advisories/18729 http://www.us-cert.gov/cas/techalerts/TA06-045A.html http://secunia.com/advisories/18912 http://www.osvdb.org/22976 http://www.vupen.com/english/advisories/2006/0469 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1638 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-004 https://nvd.nist.gov https://www.kb.cert.org/vuls/id/312956

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0020

Vulnerability Summary

References

Vulmon Search

About

Products

Connect