Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200601-09] Wine: Windows Metafile SETABORTPROC vulnerability Vulnerability Scan
Vulnerability Scan Summary
Wine: Windows Metafile SETABORTPROC vulnerability
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200601-09
(Wine: Windows Metafile SETABORTPROC vulnerability)
H D Moore discovered that Wine implements the insecure-by-design
SETABORTPROC GDI Escape function for Windows Metafile (WMF) files.
A possible hacker could entice a user to open a specially crafted
Windows Metafile (WMF) file from within a Wine executed Windows
application, possibly resulting in the execution of arbitrary code with
the rights of the user running Wine.
There is no known workaround at this time.
All Wine users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/wine-20050930"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.