Intrusion Prevention

MS.Windows.GDI.Library.EMF.DoS

Description

It indicates a possible exploit of Denial of service vulnerability in the GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 that may allow remote attackers to cause a denial of service (application crash) via a crafted Enhanced Metafile (EMF) file.

Affected Products

Microsoft Windows 2000 Server SP4 and earlier versions, Microsoft Windows Server 2003 Web Edition SP1 and earlier versions, Microsoft Windows XP Professional SP2 and earlier versions.

Impact

Denial of Service.

Recommended Actions

Apply path as given in the Microsoft bulletin MS05-053.

CVE References

CVE-2005-0803