Vulnerabilities In GDI Could Allow Remote Code Execution (956802) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS08-071.

Impact

Successful exploitation could allow execution of arbitrary code on the remote system and cause heap based buffer overflow via a specially crafted WMF file. Impact Level: System

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link. http://www.microsoft.com/technet/security/bulletin/ms08-071.mspx

Insight

The flaw is due to, - an overflow error in GDI when processing headers in Windows Metafile (WMF) files. - an error in the the way the GDI handles file size parameters in WMF files.

Affected

Microsoft Windows 2K/XP/2003/Vista/2008 Server

References

http://www.microsoft.com/technet/security/bulletin/ms08-071.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-2249, CVE-2008-3465

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Microsoft .NET Framework Remote Code Execution Vulnerability (2671605)
Microsoft Comctl32 Integer Overflow Vulnerability (2864058)
Microsoft Excel Could Allow Remote Code Execution Vulnerabilities (954066)
Microsoft Group Policy Remote Code Execution Vulnerability (3000483)
Microsoft Internet Explorer Data Stream Handling Remote Code Execution Vulnerability (947864)

Vulnerabilities in GDI Could Allow Remote Code Execution (956802)

Take action and discover your vulnerabilities