Vulnerabilities > CVE-2007-1211 - Resource Management Errors vulnerability in Microsoft Windows 2000, Windows 2003 Server and Windows XP
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Unspecified kernel GDI functions in Microsoft Windows 2000 SP4; XP SP2; and Server 2003 Gold, SP1, and SP2 allows user-assisted remote attackers to cause a denial of service (possibly persistent restart) via a crafted Windows Metafile (WMF) image that causes an invalid dereference of an offset in a kernel structure, a related issue to CVE-2005-4560.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 12 |
Common Weakness Enumeration (CWE)
Exploit-Db
description MS Windows GDI Local Privilege Escalation Exploit (MS07-017). CVE-2006-5586,CVE-2006-5758,CVE-2007-0038,CVE-2007-1211,CVE-2007-1212,CVE-2007-1213,CVE-2007-12... id EDB-ID:3688 last seen 2016-01-31 modified 2007-04-08 published 2007-04-08 reporter Ivanlef0u source https://www.exploit-db.com/download/3688/ title Microsoft Windows GDI - Local Privilege Escalation Exploit MS07-017 description MS Windows GDI Local Privilege Escalation Exploit (MS07-017) 2. CVE-2006-5586,CVE-2006-5758,CVE-2007-0038,CVE-2007-1211,CVE-2007-1212,CVE-2007-1213,CVE-2007-... id EDB-ID:3755 last seen 2016-01-31 modified 2007-04-17 published 2007-04-17 reporter Lionel d'Hauenens source https://www.exploit-db.com/download/3755/ title Microsoft Windows GDI - Local Privilege Escalation Exploit MS07-017 2 description MS Windows (.ANI) GDI Remote Elevation of Privilege Exploit (MS07-017). CVE-2006-5586,CVE-2006-5758,CVE-2007-0038,CVE-2007-1211,CVE-2007-1212,CVE-2007-1213,C... id EDB-ID:3804 last seen 2016-01-31 modified 2007-04-26 published 2007-04-26 reporter Lionel d'Hauenens source https://www.exploit-db.com/download/3804/ title Microsoft Windows - .ANI GDI Remote Elevation of Privilege Exploit MS07-017
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS07-017.NASL |
description | The remote host is running a version of Windows with a bug in the Animated Cursor (ANI) handling routine that could allow an attacker to execute arbitrary code on the remote host by sending a specially crafted email or by luring a user on the remote host into visiting a rogue web site. Additionally, the system is vulnerable to : - Local Privilege Elevation (GDI, EMF, Font Rasterizer) - Denial of Service (WMF) |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 24911 |
published | 2007-04-03 |
reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/24911 |
title | MS07-017: Vulnerabilities in GDI Could Allow Remote Code Execution (925902) |
code |
|
Oval
accepted | 2011-05-09T04:01:14.281-04:00 | ||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||
contributors |
| ||||||||||||||||||||
definition_extensions |
| ||||||||||||||||||||
description | Unspecified kernel GDI functions in Microsoft Windows 2000 SP4; XP SP2; and Server 2003 Gold, SP1, and SP2 allows user-assisted remote attackers to cause a denial of service (possibly persistent restart) via a crafted Windows Metafile (WMF) image that causes an invalid dereference of an offset in a kernel structure, a related issue to CVE-2005-4560. | ||||||||||||||||||||
family | windows | ||||||||||||||||||||
id | oval:org.mitre.oval:def:1571 | ||||||||||||||||||||
status | accepted | ||||||||||||||||||||
submitted | 2007-04-09T09:49:32 | ||||||||||||||||||||
title | WMF Denial of Service Vulnerability | ||||||||||||||||||||
version | 73 |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=499
- http://www.securityfocus.com/archive/1/466186/100/200/threaded
- http://www.securityfocus.com/bid/23275
- http://www.securitytracker.com/id?1017843
- http://www.vupen.com/english/advisories/2007/1215
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-017
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33258
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1571