|
Saturday, 17 October 2009 03:40 |
On Tuesday, Oct 13, Microsoft has released MS09-062 - Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488). This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content. Microsoft ratings for MS09-062: Maximum Severity Rating - Critical Impact of Vulnerability - Remote Code Execution Exploitability Index - 1 - Consistent exploit code likely. Bulletins replaced by this update: MS08-052. MS09-024. MS09-062 addresses the following CVEs: 1) GDI+ WMF Integer Overflow Vulnerability - CVE-2009-2500 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2500 A remote code execution vulnerability exists in the way that GDI+ allocates buffer size when handling WMF image files. The vulnerability could allow remote code execution if a user opens a specially crafted WMF image file or browses to a Web site that contains specially crafted content. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. 2) GDI+ PNG Heap Overflow Vulnerability - CVE-2009-2501 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2501 A remote code execution vulnerability exists in the way that GDI+ allocates memory. The vulnerability could allow remote code execution if a user opens a specially crafted PNG image file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. 3) GDI+ TIFF Buffer Overflow Vulnerability - CVE-2009-2502 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2502 A remote code
Source : http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=970906&poid=
|
