Vulnerabilities In GDI Could Allow Remote Code Execution (956802) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS08-071.

Impact

Successful exploitation could allow execution of arbitrary code on the remote system and cause heap based buffer overflow via a specially crafted WMF file. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-071.mspx

Insight

The flaw is due to, - an overflow error in GDI when processing headers in Windows Metafile (WMF) files. - an error in the the way the GDI handles file size parameters in WMF files.

Affected

Microsoft Windows 2K/XP/2003/Vista/2008 Server

References

http://www.microsoft.com/technet/security/bulletin/ms08-071.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-2249, CVE-2008-3465

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Microsoft Foundation Classes Could Allow Remote Code Execution Vulnerability (2387149)
Microsoft Data Analyzer and IE Developer Tools ActiveX Control Vulnerability (980195)
Microsoft Internet Explorer Data Stream Handling Remote Code Execution Vulnerability (947864)
Microsoft DHTML Editing Component ActiveX Remote Code Execution Vulnerability (956844)
Cumulative Security Update for Internet Explorer (969897)

Vulnerabilities in GDI Could Allow Remote Code Execution (956802)

Take action and discover your vulnerabilities