Microsoft Patch Tuesday: Microsoft Security Bulletin MS05-053
Aside from a New & Improved Malicious Software Removal Tool, Microsoft issues one (1) Critical patch today:
Microsoft Security Bulletin MS05-053
It appears as though this security bulletin, however, encompasses three (3) separate vulnerabilities:
Graphics Rendering Engine - CAN-2005-2123:
A remote code execution vulnerability exists in the rendering of Windows Metafile (WMF) and Enhanced Metafile (EMF) image formats that could allow remote code execution on an affected system. Any program that renders WMF or EMF images on the affected systems could be vulnerable to this attack. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
Windows Metafile Vulnerability - CAN-2005-2124:
A remote code execution vulnerability exists in the rendering of Windows Metafile (WMF) image format that could allow remote code execution on an affected system. Any program that renders WMF images on the affected systems could be vulnerable to this attack. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
Enhanced Metafile Vulnerability - CAN-2005-0803:
A denial of service vulnerability exists in the rendering of Enhanced Metafile (EMF) image format that could allow any program that renders EMF images to be vulnerable to attack. An attacker who successfully exploited this vulnerability could cause the affected programs to stop responding.
0 Comments:
Post a Comment
<< Home