JVN/CVE Demo: Nvdinfos

NVD

Id: 70149
Name: CVE-2005-4560
Description: The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.
Reject
CVSS Version: 2
CVSS Score: 7.5
Severity: High
CVSS Base Score: 7.5
CVSS Impact Subscore: 6.4
CVSS Exploit Subscore: 10
CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Pub Date: 2017-01-03
Published: 2005-12-28
Modified Date: 2011-09-22
Seq: 2005-4560

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
361971	70149	CVE-2005-4560	http://linuxbox.org/pipermail/funsec/2006-January/002455.html	View
361972	70149	CVE-2005-4560	oval:org.mitre.oval:def:1431	View
361973	70149	CVE-2005-4560	oval:org.mitre.oval:def:1433	View
361974	70149	CVE-2005-4560	oval:org.mitre.oval:def:1460	View
361975	70149	CVE-2005-4560	oval:org.mitre.oval:def:1492	View
361976	70149	CVE-2005-4560	oval:org.mitre.oval:def:1564	View
361977	70149	CVE-2005-4560	oval:org.mitre.oval:def:1612	View
361978	70149	CVE-2005-4560	1015416	View
361979	70149	CVE-2005-4560	http://support.avaya.com/elmodocs2/security/ASA-2006-001.htm	View
361980	70149	CVE-2005-4560	http://vil.mcafeesecurity.com/vil/content/v_137760.htm	View
361981	70149	CVE-2005-4560	http://www.f-secure.com/weblog/archives/archive-122005.html#00000753	View
361982	70149	CVE-2005-4560	VU#181038	View
361983	70149	CVE-2005-4560	http://www.microsoft.com/technet/security/advisory/912840.mspx	View
361984	70149	CVE-2005-4560	MS06-001	View
361985	70149	CVE-2005-4560	20051227 Is this a new exploit?	View
361986	70149	CVE-2005-4560	20051227 Exploitation of Windows WMF on the web	View
361987	70149	CVE-2005-4560	20051228 RE: [Full-disclosure] Someone wasted a nice bug on spyware...	View
361988	70149	CVE-2005-4560	20051228 Re: Is this a new exploit?	View
361989	70149	CVE-2005-4560	20051228 WMF Exploit	View
361990	70149	CVE-2005-4560	20051229 WMF exploit	View
361991	70149	CVE-2005-4560	20051229 RE: WMF Exploit	View
361992	70149	CVE-2005-4560	20060101 Re: RE: WMF Exploit	View
361993	70149	CVE-2005-4560	20060103 WMF round-up, updates and de-mystification	View
361994	70149	CVE-2005-4560	20060103 WMF SETABORTPROC exploit	View
361995	70149	CVE-2005-4560	20060103 Re: [funsec] WMF round-up, updates and de-mystification	View
361996	70149	CVE-2005-4560	20060104 Another WMF exploit workaround	View
361997	70149	CVE-2005-4560	16074	View
361998	70149	CVE-2005-4560	TA05-362A	View
361999	70149	CVE-2005-4560	TA06-005A	View
362000	70149	CVE-2005-4560	ADV-2005-3086	View
362001	70149	CVE-2005-4560	http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375341	View
362002	70149	CVE-2005-4560	http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420	View
362003	70149	CVE-2005-4560	win-wmf-execute-code(23846)	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
62549	JVNDB-2005-000751	Microsoft Windows の GDI における任意のコードを実行される脆弱性	------------	CVE-2005-4560	15762	CVE-2005-4560	70149	7.5		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000751.html	2005-12-28	2007-04-01	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.48 MB
Controller render start	2.33 MB
View render complete	20.73 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.74
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	306.21
Event: Controller.beforeRender	4.21
» Processing toolbar data	4.13
Rendering View	771.68
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	749.29
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	14.86
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	4.59
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/70149
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/70149
Remote Port	4418
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	3.16.125.156
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=1suagpmsko53ur8g3lgnf67j14
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	3.16.125.156
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	3.16.125.156
Unique Id	aA-krntF0uL1olPRdTep7AAAAeg
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	3.16.125.156
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	3.16.125.156
Redirect Unique Id	aA-krntF0uL1olPRdTep7AAAAeg
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	3.16.125.156
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	3.16.125.156
Redirect Redirect Unique Id	aA-krntF0uL1olPRdTep7AAAAeg
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745855662.2837
Request Time	1745855662

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files