Lucene search

PRIOn knowledge basePRION:CVE-2006-0106

HistoryJan 06, 2006 - 6:03 p.m.

Code injection

2006-01-0618:03:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.974 High

EPSS

Percentile

99.9%

JSON

gdi/driver.c and gdi/printdrv.c in Wine 20050930, and other versions, implement the SETABORTPROC GDI Escape function call for Windows Metafile (WMF) files, which allows attackers to execute arbitrary code, the same vulnerability as CVE-2005-4560 but in a different codebase.

CPENameOperatorVersion
wineeq0.9.5
wineeq0.9.2
wineeq2005930.0.0
wineeq0.9.4

Name	Operator	Version
wine	eq	0.9.5
wine	eq	0.9.2
wine	eq	2005930.0.0
wine	eq	0.9.4

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=346197

lists.immunitysec.com/pipermail/dailydave/2006-January/002806.html

secunia.com/advisories/18323

secunia.com/advisories/18451

secunia.com/advisories/18549

secunia.com/advisories/18578

www.debian.org/security/2006/dsa-954

www.gentoo.org/security/en/glsa/glsa-200601-09.xml

www.mandriva.com/security/advisories?name=MDKSA-2006:014

www.novell.com/linux/security/advisories/2006_02_sr.html

www.securityfocus.com/archive/1/422128/100/0/threaded

www.vupen.com/english/advisories/2006/0098

exchange.xforce.ibmcloud.com/vulnerabilities/23846