(MS09-062) GDI+ .Net PropertyItem Heap Overflow Vulnerability (957488)

(MS09-062) GDI+ .Net PropertyItem Heap Overflow Vulnerability (957488)

Rating: High

Affected OS: Windows XP (Service Pack 3, [++])

Description: A vulnerability exists in Microsoft’s GDI+ component may allow remote code execution.

Recommendation: The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-062.mspx

Observation: A vulnerability exists in Microsoft’s GDI+ component may allow remote code execution.

The flaw exists in the Microsoft .NET Framework, which can allow malicious Microsoft .NET applications to gain unmanaged code execution privileges.

Common Vulnerabilities & Exposures (CVE): CVE-2009-2504

IAVA Reference Number: 2009-A-0099

0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.