Is CVE-2005-4560 actively exploited?

CVE-2005-4560 has no public evidence of in-the-wild exploitation as of 2026-04-16.

What is the CVSS score for CVE-2005-4560?

CVE-2005-4560 has a CVSS score of 7.5 (UNKNOWN severity). Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P.

How do I patch CVE-2005-4560?

Patch guidance is available from microsoft security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2005-4560.

CVE-2005-4560 - remediation guidance & executive summary

Q: Which products are affected by CVE-2005-4560?

16 products: microsoft windows 2003 server, microsoft windows 2003 server, microsoft windows 2003 server, microsoft windows 2003 server, microsoft windows 2003 server, and 11 more.

Description

The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC GDI Escape function call, related to the Windows Picture and Fax Viewer (SHIMGVW.DLL), a different vulnerability than CVE-2005-2123 and CVE-2005-2124, and as originally discovered in the wild on unionseek.com.

CVSS Metrics

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector: network
Access Cmplx: low
Auth: none
Confidentiality: partial
Integrity: partial
Availability: partial
Weaknesses: CWE-20 · Improper Input Validation

Metadata

Primary Vendor: MICROSOFT
Published: 12/28/2005
Last Modified: 4/16/2026
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

microsoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_2003_servermicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xpmicrosoft : windows_xp

Remediation Guidance

Executive Summary

View on NIST NVD