| |
An obscure and rarely used function in Microsoft's Windows MetaFile specification, SetAbortProc, can be used to create a WMF that when interpreted will execute code implanted by the malicious exploiter. This means that rendering a maliciously designed WMF file, even via a thumbnail view, can allow uninvited embedded program code execution.
Though this vector has been in place since Windows 3.1 days, it is exploitable only on Windows NT-based systems. This was first reported around 28 December, 2005, with exploit code turning up on web sites within hours of the initial report. Microsoft issued an emergency patch for this problem on 5 January, 2006 - (MSO6-001). Speculation that this security hole was a deliberate backdoor into Windows has been throughly discredited.
(CVE-2005-4560)
|
Cart
