SMTP: Microsoft Windows MetaFile AttemptWrite Function Integer Overflow
This signature detects attempts to exploit a known vulnerability in Microsoft Windows MetaFile (WMF). A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted user.
Extended Description
Microsoft Windows is prone to a remote code-execution vulnerability because it fails to properly bounds-check user-supplied metafile data. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of users viewing malicious files. This facilitates the remote compromise of affected computers.
Affected Products
Avaya messaging_application_server,Microsoft windows_xp_professional
Short Name
SMTP:OVERFLOW:MS-WMF-OF
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
AttemptWrite CVE-2007-3034 Function Integer MetaFile Microsoft Overflow Windows bid:25302
Release Date
02/25/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Hp
Microsoft
Avaya
CVSS Score
9.3