CVE-2005-2124

Microsoft Windows 2000 - Buffer Overflow

Title source: rule

Description

Unspecified vulnerability in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, related to "An unchecked buffer" and possibly buffer overflows, allows remote attackers to execute arbitrary code via a crafted Windows Metafile (WMF) format image, aka "Windows Metafile Vulnerability."

Exploits (2)

exploitdb WORKING POC VERIFIED

by Winny Thomas · cdoswindows

https://www.exploit-db.com/exploits/1346

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Winny Thomas · cdoswindows

https://www.exploit-db.com/exploits/1343

View Code ZIP pw:eip

References (13)

[Various Sources] http://www.eeye.com/html/research/advisories/AD20051108a.html

[Patch, Vendor Advisory] http://www.eeye.com/html/research/advisories/AD20051108b.html

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/433341

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA05-312A.html

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-053

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2005-228.pdf

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/15356

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1015168

[Third Party Advisory] http://secunia.com/advisories/17223

[Third Party Advisory] http://secunia.com/advisories/17461

[Third Party Advisory] http://secunia.com/advisories/17498

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/2348

[Third Party Advisory] http://securityreason.com/securityalert/161

Scores

EPSS 0.8317

EPSS Percentile 99.3%

Details

Status published

Products (6)

microsoft/windows_2000

microsoft/windows_2003_server 64-bit

microsoft/windows_2003_server itanium

microsoft/windows_2003_server r2

microsoft/windows_2003_server sp1 (2 CPE variants)

microsoft/windows_xp (3 CPE variants)

Published Nov 29, 2005

Tracked Since Feb 18, 2026