tipsykitten (tipsykitten) wrote in virusnews,
tipsykitten
tipsykitten
virusnews

GDI+ WMF Integer Overflow Vulnerability

Type
Logic error
Impact of exploitation
Remote Code Execution
User Interaction
user interaction is needed
Attack Vector
Maliciously Crafted File
Rating
Medium
CVE reference
CVE-2009-2500,

Vendor Status
Responded and patched
Vulnerable systems
Internet Explorer 6 SP1,
Office Word Viewer 2003,
Excel Viewer 2003 SP3,
Office PowerPoint Viewer 2003,
Office Compatibility Pack For Word Excel Ppt 2007 ,
Expression Media All,
Office Groove Server 2007,
SQL 2000 Reporting Service SP2,
Sql Server 2005 SP2,
Visual Studio .Net 2003 SP1,
Visual Studio 2008,
Report Viewer 2005 SP1,
Report Viewer 2008,
Visual Fox Pro 6.0,
Forefront Client Security 1.0,
Summary
A vulnerability in Microsoft GDI+ may allow remote code execution.

Please visit softe.org for further information on the latest spyware virus worm and how to clean your PC
  • Post a new comment

    Error

    default userpic
  • 0 comments