ITsVISTA KB-Link: KB948590 | ITsVISTA

ITsVISTA KB-Link: KB948590

April 8th, 2008 · Leave a Comment · 1,602 views
Tags: GDI, Security, Update

Vulnerabilities in GDI Could Allow Remote Code Execution

Updates Description: This security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Update type: Critical

Release date: April 8, 2008

Applies to: All

Knowledge base: support.microsoft.com/kb/948590

Download link: 32-bit | 64-bit

Comments: Here are the specifics on the vulnerabilities covered by this update:

GDI Heap Overflow Vulnerability - CVE-2008-1083
GDI Stack Overflow Vulnerability - CVE-2008-1087

There is a download that resolves this issue.

32-bit Download: Windows6.0-KB948590-x86.msu

64-Bit Download: Windows6.0-KB948590-x64.msu

For more information on this issue, including potential causes, workarounds, and resolutions, see: Microsoft KB Article KB948590.

Get notified of new posts for FREE via RSS or E-mail

Subscribe to ITsVISTA!

Digg

Add to Mixx!

Netscape

Slashdot

Slashdot | Stumble

Stumble

Related Posts

Comments

There are no comments yet...Come on, share your thoughts!

Leave a Comment