Vulnerability in N/a
CVE-2004-0200
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is no…
EPSS: 0.745 (98.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- oval:org.mitre.oval:def:3038 (signature, x_refsource_OVAL, vdb-entry)
- oval:org.mitre.oval:def:1105 (signature, x_refsource_OVAL, vdb-entry)
- VU#297462 (x_refsource_CERT-VN, third-party-advisory)
- TA04-260A (x_refsource_CERT, third-party-advisory)
- oval:org.mitre.oval:def:3320 (signature, x_refsource_OVAL, vdb-entry)
- oval:org.mitre.oval:def:2706 (signature, x_refsource_OVAL, vdb-entry)
- 20040914 Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow (mailing-list, x_refsource_BUGTRAQ)
- oval:org.mitre.oval:def:1721 (signature, x_refsource_OVAL, vdb-entry)
- oval:org.mitre.oval:def:3082 (signature, x_refsource_OVAL, vdb-entry)
- MS04-028 (x_refsource_MS, vendor-advisory)