Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote malicious users to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft .net framework 1.0 |
||
microsoft frontpage 2003 |
||
microsoft greetings 2002 |
||
microsoft picture it 2002 |
||
microsoft picture it 7.0 |
||
microsoft publisher 2003 |
||
microsoft visio 2002 |
||
microsoft visual c\\+\\+ 2003 |
||
microsoft visual j\\# .net 2003 |
||
microsoft excel 2003 |
||
microsoft frontpage 2002 |
||
microsoft outlook 2002 |
||
microsoft outlook 2003 |
||
microsoft project 2002 |
||
microsoft project 2003 |
||
microsoft publisher 2002 |
||
microsoft visual c\\# 2003 |
||
microsoft visual c\\+\\+ 2002 |
||
microsoft digital image suite 9 |
||
microsoft excel 2002 |
||
microsoft office xp |
||
microsoft onenote 2003 |
||
microsoft powerpoint 2003 |
||
microsoft producer |
||
microsoft visual basic 2003 |
||
microsoft visual c\\# 2002 |
||
microsoft word 2002 |
||
microsoft word 2003 |
||
microsoft digital image pro 7.0 |
||
microsoft digital image pro 9 |
||
microsoft infopath 2003 |
||
microsoft office 2003 |
||
microsoft picture it 9 |
||
microsoft powerpoint 2002 |
||
microsoft visio 2003 |
||
microsoft visual basic 2002 |
||
microsoft visual studio .net 2002 |
||
microsoft visual studio .net 2003 |
||
microsoft windows 2003 server r2 |
||
microsoft windows xp |