ID:580 - Exploit for NULL pointer dereference in Windows and Windows Server - CVE-2007-1211

Link to public exploit:

Vulnerability description

The vulnerability allows a remote attacker to cause denial of service.

The vulnerability exists due to NULL pointer dereference error when rendering Windows Metafile (WMF) image format files. A remote attacker can create a specially crafted WMF file, trick the victim into opening it and trigger denial of service conditions.

Successful exploitation of the vulnerability may allow a remote attacker to cause the affected system to stop responding and possibly restart.

Remediation

• Microsoft Windows 2000 Service Pack 4 — Download the update
• Microsoft Windows XP Service Pack 2 — Download the update
• Microsoft Windows XP Professional x64 Edition and Microsoft Windows XP Professional x64 Edition Service Pack 2 — Download the update
• Microsoft Windows Server 2003, Microsoft Windows Server 2003 Service Pack 1, and Microsoft Windows Server 2003 Service Pack 2 — Download the update
• Microsoft Windows Server 2003 for Itanium-based Systems, Microsoft Windows Server 2003 with SP1 for Itanium-based Systems, and Microsoft Windows Server 2003 with SP2 for Itanium-based Systems — Download the update
• Microsoft Windows Server 2003 x64 Edition and Microsoft Windows Server 2003 x64 Edition Service Pack 2 — Download the update
• Windows Vista — Download the update
• Windows Vista x64 Edition — Download the update