Vulnerabilities > CVE-2006-0143 - Resource Management Errors vulnerability in Microsoft products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
microsoft
CWE-399
exploit available

Summary

Microsoft Windows Graphics Rendering Engine (GRE) allows remote attackers to corrupt memory and cause a denial of service (crash) via a WMF file containing (1) ExtCreateRegion or (2) ExtEscape function calls with arguments with inconsistent lengths.

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionMicrosoft Windows Graphics Rendering Engine Multiple Memory Corruption Vulnerabilities. CVE-2006-0143. Dos exploit for windows platform
idEDB-ID:27051
last seen2016-02-03
modified2006-01-09
published2006-01-09
reportercocoruder
sourcehttps://www.exploit-db.com/download/27051/
titleMicrosoft Windows Graphics Rendering Engine Multiple Memory Corruption Vulnerabilities