HTTP: TrafficIQ WMF Malformed Header

This signature detects a Windows Meta File (WMF) with invalid options in its header generated by TrafficIQ, a traffic generator. The WMF generated by TrafficIQ is not malicious and does not crash Internet Explorer.

Extended Description

Microsoft Internet Explorer is affected by an WMF image-parsing memory-corruption vulnerability. This issue is allegedly due to an integer-overflow flaw that leads to corrupted heap memory. This problem presents itself when a user views a malicious WMF-formatted file containing specially crafted data. This issue allows remote attackers to execute arbitrary machine code in the context of the affected application. Failed exploitation attempts likely result in crashing the application.

Affected Products

Nortel_networks self-service_media_processing_server,Nortel_networks optivity_telephony_manager_tm-cs1000

References

BugTraq: 16516

CVE: CVE-2006-0020

URL: http://www.microsoft.com/technet/security/advisory/913333.mspx http://www.us-cert.gov/cas/techalerts/TA06-045A.html http://www.microsoft.com/technet/security/bulletin/ms06-004.mspx

Short Name

SCAN:II:TIQ-WMF-MAL-HEADER

Severity

Warning

Recommended

False

Recommended Action

Drop

HTTP: TrafficIQ WMF Malformed Header

Extended Description

Affected Products

References

Found a potential security threat?