p2p news / p2pnet: You know Microsoft’s newest critical hack hole, the WMF vulnerability? It seems it isn’t the newest.

At least two new unpatched flaws have been exposed, says Frank Ruder, posting in the SecurePoint BUGTRAQ Archive.

Microsoft Windows GRE(Graphics Rendering Engine) opens multiple Unauthorized Memory Access vulnerabilities while rendering WMF format file, he says, going on:

"Users who view the malicious WMF format file will bring a denial of service attack (explorer.exe will be restart) …"

The holes, "appear to pose the risk of simply crashing the WMF-viewing software, typically Internet Explorer," says the IDG News Service, going on, "However, users would first need to trick a victim into viewing a specially crafted WMF image in order for this to happen, security experts say.

"The vulnerabilities can be found in a number of versions of Windows, including Windows XP, Service Pack 2, Windows Server 2003, Service Pack 1, and Windows 2000, Service Pack 4, according to cocoruder’s Bugtraq posting.

"Because of the inherent complexity of image formats, there are plenty of opportunities for attackers to find bugs similar to the two that were revealed Monday, said Russ Cooper, senior information security analyst for Cybertrust Inc."

The two new vulnerabilities so far identified are "independent of MS05-053 or MS06-001," says Ruder who, after giving chapter and verse on the flaws, suggests, "unregister the Windows Picture and Fax Viewer (Shimgvw.dll)(see MS06-001)".

Also See:
WMF vulnerability – ‘Critical’ Microsoft WMF flaw fix, January 6, 2006
BUGTRAQ Archive – [UPDATE]Microsoft Windows GRE WMF Format Multiple Unauthorized Memory Access Vulnerabilities, January 9, 2006
IDG News Service – Two new WMF bugs found, January 9, 2006

This entry was posted on Tuesday, January 10th, 2006 at 12:46 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 2186 times