Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted malicious users to cause a denial of service (application crash) via a crafted WMF file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows xp |
||
microsoft windows 2003 server r2 |
||
microsoft windows 2003 server sp1 |