This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
The remote Windows host is affected by a remote code execution
The version of Microsoft's Graphics Component installed on the remote
host is affected by a remote code execution vulnerability due improper
handling of specially crafted Enhanced Metafile (EMF) image format
files by GDI+. A remote, unauthenticated attacker can exploit this
vulnerability by convincing a user to open a file or visit a website
containing a specially crafted EMF file, resulting in execution of
arbitrary code in the context of the current user.
See also :
Microsoft has released a set of patches for Windows 2003, Vista, 2008,
7, and 2008 R2.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false