Intrusion Prevention



It indicates a possible exploit of Denial of service vulnerability in the GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 that may allow remote attackers to cause a denial of service (application crash) via a crafted Enhanced Metafile (EMF) file.

Affected Products

Microsoft Windows 2000 Server SP4 and earlier versions, Microsoft Windows Server 2003 Web Edition SP1 and earlier versions, Microsoft Windows XP Professional SP2 and earlier versions.


Denial of Service.

Recommended Actions

Apply path as given in the Microsoft bulletin MS05-053.

CVE References