Warning: mysql_result(): supplied argument is not a valid MySQL result resource in /var/www/hosts/cases/inc/refcount_alerts.php on line 23
2 vulnerabilities - Microsoft Windows - highly critical
Just the facts
     
Title   2 vulnerabilities - Microsoft Windows - highly critical
Description   Vulnerabilities in graphics rendering engine could allow arbitrary code execution
CyTRAP Labs ID   CT110034
Original release date   2005-11-08
Systems affected  
Version number   1.0
ISSN   1603-9858
Verify threat   http://casescontact.org/alerts/110034
Risk assessment   High
Impact/Severity   High
Audio/Podcast files   English audio file - CyTRAP ID CT110034
Deutsch Audio File - CyTRAP ID CT110034
 

Why not get new tips and alerts by e-mail directly to your in-box? It's much more convenient:

Your email: or press here.
 

What is the problem?
     
Admin  

We appreciate you looking at one of our alerts. However, to assure that you have the latest version in front of you, please always click the link above to visit the website, because small changes are made without e-mailing the alerts out again

Please share this information with your colleagues, because they will be thankful you did.

     
How does it affect me?   Should I Worry?

Yes ==> If you are like about another 90% of the people that use Windows you should be concerned. Experts claim it is a very critical vulnerability.

A) The Threat may result in an attacker who successfully exploited the most severe of these vulnerabilities taking complete control of an affected system.

B) Vulnerability is caused due to:

  1. remote code execution vulnerability exists in the rendering of Windows Metafile (WMF) and Enhanced Metafile (EMF) image formats/files;
  2. A boundary error exists in the rendering of certain malformed Windows Metafile (WMF) image files.

C) Impact . An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

     
Systems affected  
  1. Microsft Windows 2000
    • Advanced Server
    • Datacenter Server
    • Professional
    • Server
  2. Microsoft Windows Server 2003
    • Datacenter Edition
    • Enterprise Edition
    • Standard Edition
    • Web Edition
  3. Microsoft Windows XP
    • Home Edition
    • Professional
     
Not affected systems   All others
 

Minimize your exposure to this threat - follow the steps outlined below
     
Much Gain - Little Pain - Do this   There is no temporary fix required since the software patches for all affected operating systems/programs are available from Microsoft  
     
How do I fix it   Download the patches here as follows:
     
Other Actions   Interesting tidbit:
  • 2005-03-29 - Date vulnerability -- Windows Metafile Multiple Heap Overflows was reported to Microsoft
  • 2005-11-08 - 224 days afterwards Microsoft released the patches
     
Additional risk minimization   Software PATCH is now available (see above Software and System Fix section for link

French version of this alert is available    

 

If you need more information, please read on. Otherwise follow the steps outlined above.
     
Source   Secunia
Source URL   http://secunia.com/advisories/17498/
Source date   2005-11-08
Other source   eEye
Other source URL   http://www.eeye.com/html/research/advisories/AD20051108b.html
Other source date   2005-11-08
More information   Microsoft thanks:
  • eEye Digital Security for reporting the Metafile Vulnerability (CAN-2005-2123).
  • Venustech AdDLab, eEye Digital Security and Peter Ferrie of Symantec Security Response for reporting the Windows Metafile Vulnerability (CAN-2005-2124)
CAN   CAN-2005-2123, CAN-2005-2124,CAN-2005-0803
Microsoft   MS05-053 (KB896424)
Secunia   SA17498
CyTRAP labs ID   CT110034
eEye   AD20051108a, AD20051108b
CERT-ln   AD20051108a, AD20051108b
 

CYTRAP resources - check it out - because it will help you better protect yourself
     

Administrative
     
Author   Urs E. Gattiker - CyTRAP Labs
     
Revisions  
  • 1.0 - 2005-11-8 - First Version
    • Contact details   Web: http://CASEScontact.org
    E-mail: support01 at CASEScontact.org

    Tel: +41(0)76-200-7778 or + 44(0)70-9237-6036
    Fax: +44(0)70-9237-6036, dial 3 send fax
     

    --END of ADVISORY - Important Info Below--
     
    We recommend that you VERIFY ALL ADVISORIES you receive IMMEDIATELY, by clicking on the link provided at the top of this alert.

    NO WARRANTY
    Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material.

    Ride the rollercoaster successfully by subscribing to our alerts, tips, tools and skills training receiving them either via:

    1) e-mail
    2) RSS feeds, or else, just get a
    3) free skills tune-up


    NO WARRANTY
    Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material.

    CASES writers & sponsors do not make any warranty of any kind with respect to freedom from patent, trademark, or copyright infringement.
    Full DISCLAIMER notice at: http://www.casescontact.org/terms.php

    UNSUBSCRIBE
    If you no longer wish to receive this THREAT ALERT, please Unsubscribe at:
    http://www.casescontact.org/unsubscribe.php

    QUESTIONS, comments, ideas? Cheer us up at:Alerts-Comments at CASEScontact.org

    CASEScontact.org -- Threat Alerts and Security Notices --clear and precise, no compromise -
    --currently hosted by Flashcable
    -- END of THREAT ALERT --
    Copyright (c) 2007 by CyTRAP labs - Urs E. Gattiker. All rights reserved.