Denial of Service Vulnerability in Microsoft WMF Parsing Application
CVE-2006-0020

Currently unrated

Key Information:

Vendor
Microsoft
Vendor
CVE Published:
10 January 2006

Summary

A vulnerability exists in Microsoft's WMF parsing application that may allow attackers to create specially crafted WMF files. When these files are processed by Internet Explorer versions 5.01 SP4 on Windows 2000 SP4 and 5.5 SP2 on Windows Millennium, it could lead to a denial of service, potentially crashing the application. This vulnerability may involve an integer overflow affecting the WMF header size, differing from another known vulnerability and impacting user systems significantly.

References

EPSS Score

46% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.