CVE DATABASE / CVE-2007-1211
CVE-2007-1211
CVSS 7.1 · HIGH
Summary
Unspecified kernel GDI functions in Microsoft Windows 2000 SP4; XP SP2; and Server 2003 Gold, SP1, and SP2 allows user-assisted remote attackers to cause a denial of service (possibly persistent restart) via a crafted Windows Metafile (WMF) image that causes an invalid dereference of an offset in a kernel structure, a related issue to CVE-2005-4560.
CVSS 2.0 breakdown
| Base score | 7.1 (HIGH) |
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:C |
| Attack vector | NETWORK |
| Attack complexity | MEDIUM |
| Confidentiality | NONE |
| Integrity | NONE |
| Availability | COMPLETE |
Weakness type (CWE)
Affected products
Microsoft windows 2000Microsoft windows 2003 serverMicrosoft windows xp
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=499
- http://www.securityfocus.com/archive/1/466186/100/200/threaded
- http://www.securityfocus.com/bid/23275
- http://www.securitytracker.com/id?1017843
- http://www.vupen.com/english/advisories/2007/1215
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-017
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33258
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1571
Data: NIST NVD. NVD last modified 2026-04-23. Always verify against the vendor advisory before acting.