(MS09-062) GDI+ .Net PropertyItem Heap Overflow Vulnerability (957488)
Affected OS: Windows XP (Service Pack 3, [++])
Description: A vulnerability exists in Microsoft’s GDI+ component may allow remote code execution.
Recommendation: The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-062.mspx
Observation: A vulnerability exists in Microsoft’s GDI+ component may allow remote code execution.
The flaw exists in the Microsoft .NET Framework, which can allow malicious Microsoft .NET applications to gain unmanaged code execution privileges.
Common Vulnerabilities & Exposures (CVE): CVE-2009-2504
IAVA Reference Number: 2009-A-0099