[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in GDI

ID: oval:org.mitre.oval:def:2088Date: (C)2007-08-15   (M)2022-03-21
Class: VULNERABILITYFamily: windows




Integer overflow in the AttemptWrite function in Graphics Rendering Engine (GDI) on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted metafile (image) with a large record length value, which triggers a heap-based buffer overflow.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Reference:
CVE-2007-3034
CVE    1
CVE-2007-3034
CPE    7
cpe:/o:microsoft:windows_server_2003::sp1:x86
cpe:/o:microsoft:windows_server_2003::sp1:itanium
cpe:/o:microsoft:windows_2000::sp4
cpe:/o:microsoft:windows_xp::sp1:64bit
...

© SecPod Technologies