Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.6
CVSSv2

CVE-2006-4071

Published: 10/08/2006 Updated: 17/10/2018
CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9
VMScore: 265
Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P
Subscribe to Windows Xp

Vulnerability Summary

Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted malicious users to cause a denial of service (application crash) via a crafted WMF file.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows xp

microsoft windows 2003 server r2

microsoft windows 2003 server sp1

Exploits

Exploit DB: Microsoft Windows Explorer - '.WMF' CreateBrushIndirect Denial of Service
#!/usr/bin/perl print "\nWMF PoC denial of service exploit by cyanid-E <biz4rre\@gmailcom>"; print "\n\ngenerating brushwmf"; open(WMF, ">/brushwmf") or die "cannot create wmf file\n"; print WMF "\x01\x00\x09\x00\x00\x03\x22\x00\x00\x00\x63\x79\x61\x6E\x69\x64"; print WMF "\x2D\x45\x07\x00\x00\x00\xFC\x02\x00\x00\x00\x00\x00\x00\x0 ...

References

NVD-CWE-Otherhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048530.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048547.htmlhttp://secunia.com/advisories/21377http://determina.blogspot.com/2007/01/whats-wrong-with-wmf.htmlhttp://www.securityfocus.com/bid/21992http://www.securityfocus.com/bid/19365http://securityreason.com/securityalert/1353http://www.vupen.com/english/advisories/2006/3180https://exchange.xforce.ibmcloud.com/vulnerabilities/28281https://www.exploit-db.com/exploits/3111http://www.securityfocus.com/archive/1/456585/100/0/threadedhttp://www.securityfocus.com/archive/1/442426/100/0/threadedhttp://www.securityfocus.com/archive/1/442420/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/3111/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook