PT-2005-1832 · Microsoft · Windows 2000+1
Hongzen Zhou
·
Published
2005-03-20
·
Updated
2019-04-30
·
CVE-2005-0803
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Windows 2000
Description
The issue concerns a denial of service that can be triggered by a crafted Enhanced Metafile (EMF) file. This file can cause invalid offsets to be used, specifically end, emreof, or palent offsets, leading to an application crash. The estimated number of potentially affected devices worldwide is not specified.
Recommendations
For Windows 2000, apply the patch provided by Microsoft to fix the GetEnhMetaFilePaletteEntries API issue in GDI32.DLL.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gdi32.Dll
Windows 2000