CVE-2005-2123

EPSS 69.60% · P99 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-2123

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple integer overflows in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote attackers to execute arbitrary code via crafted Windows Metafile (WMF) and Enhanced Metafile (EMF) format images that lead to heap-based buffer overflows, as demonstrated using MRBP16::bCheckRecord.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Windows图形渲染引擎整数溢出漏洞(MS05-053)

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft Windows是美国微软（Microsoft）公司发布的一系列操作系统。 Microsoft Windows在渲染Windows图元文件(WMF)和增强型图元文件(EMF)图形格式时存在缓冲区溢出漏洞，成功利用这个漏洞的攻击者可以远程执行任意代码。负责解析Windows图元文件的GDI32.DLL代码的PlayMetaFileRecord函数中存在缓冲区溢出漏洞。该函数的36h和37h处理"SetPaletteEntries"-类型记录。如果记录的报告长度是7FFFFFFFh或FFF

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-2123

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-2123

请登录查看更多情报信息。

http://support.avaya.com/elmodocs2/security/ASA-2005-228.pdfx_refsource_CONFIRM
http://www.eeye.com/html/research/advisories/AD20051108b.htmlx_refsource_MISC
http://www.securityfocus.com/bid/15352vdb-entryx_refsource_BID
http://secunia.com/advisories/17498third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/17461third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/17223third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1015168vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-053vendor-advisoryx_refsource_MS
http://www.kb.cert.org/vuls/id/300549third-party-advisoryx_refsource_CERT-VN
http://www.us-cert.gov/cas/techalerts/TA05-312A.htmlthird-party-advisoryx_refsource_CERT
http://www.vupen.com/english/advisories/2005/2348vdb-entryx_refsource_VUPEN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A701vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1175vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1263vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1063vdb-entrysignaturex_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2005-2123

Same Patch Batch · n/a · 2005-11-29 · 61 CVEs total

CVE-2005-3883		PHP mb_send_mail函数CRLF注入漏洞
CVE-2005-3901		Macromedia Flash Communication Server RTMP数据验证漏洞
CVE-2005-3897		Apple Safari Javascript BODY事件拒绝服务漏洞
CVE-2005-3896		Mozilla Javascript BODY事件拒绝服务漏洞
CVE-2005-3895		Open Ticket Request System下载附件执行任意脚本漏洞
CVE-2005-3899		Google Talk自动更新拒绝服务漏洞
CVE-2005-2124		Microsoft Windows图形渲染引擎WMF格式堆溢出漏洞(MS05-053)
CVE-2005-3886		Cisco Security Agent未明的本地保护绕过和权限提升漏洞
CVE-2005-3885		Inkscape不安全的临时文件创建漏洞
CVE-2005-3884		Zainu 多个SQL注入漏洞
CVE-2005-3887		Gadu-Gadu不正确处理MS-DOS设备名漏洞
CVE-2005-3882		FAQSystems FAQRing Answer.PHP SQL注入漏洞
CVE-2005-3881		Atlantis Knowledge Base Search.PHP SQL注入漏洞
CVE-2005-3880		KBase Express多个SQL注入漏洞
CVE-2005-3879		Softbiz Resource Repository Script多个SQL注入漏洞
CVE-2005-3878		PHP Doc System index.php 目录遍历漏洞
CVE-2005-3877		Simple Document Management System 多个SQL注入漏洞
CVE-2005-3876		ADC2000 NG Pro SQL注入漏洞
CVE-2005-3875		Enterprise Connector SQL注入漏洞
CVE-2005-3874		Netzbrett netzbr.php SQL注入漏洞

Showing top 20 of 61 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-2123

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-2123

I. Basic Information for CVE-2005-2123

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2005-2123

III. Intelligence Information for CVE-2005-2123

Same Patch Batch · n/a · 2005-11-29 · 61 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-2123

Leave a comment