Bugtraq: Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution [MS04-028]

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution [MS04-028]

From: "Jérôme" ATHIAS <jerome.athias () caramail com>
Date: 14 Sep 2004 19:02:29 -0000



A buffer overrun vulnerability exists in the processing of JPEG image formats that could allow remote code execution on 
an affected system. Any program that processes JPEG images on the affected systems could be vulnerable to this attack, 
and any system that uses the affected programs or components could be vulnerable to this attack. An attacker who 
successfully exploited this vulnerability could take complete control of an affected system.

CAN-2004-0200

http://www.microsoft.com/technet/security/Bulletin/MS04-028.mspx

By Date By Thread

Current thread:

Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution [MS04-028] Jérôme (Sep 14)