Multiple integer overflows in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allow remote malicious users to execute arbitrary code via crafted Windows Metafile (WMF) and Enhanced Metafile (EMF) format images that lead to heap-based buffer overflows, as demonstrated using MRBP16::bCheckRecord.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows xp |
||
microsoft windows 2003 server itanium |
||
microsoft windows 2003 server r2 |
||
microsoft windows 2003 server sp1 |
||
microsoft windows 2000 |
||
microsoft windows 2003 server 64-bit |