Wednesday, September 10, 2008

Windows GDI+ GIF memory corruption

There is a memory corruption vulnerability in GIF file processing in Microsoft GDI+ that can be used to crash a vulnerable application and potentially execute arbitrary code.

The vulnerability

The vulnerability is caused due to improper handling of graphic control extension when processing malformed GIF files. The vulnerability can be triggered if a large number of extension markers (0x21) followed by unknown labels is found when processing a GIF file.

Impact

This vulnerability can be used to corrupt memory of any application utilizing GDI+ for GIF file decoding if it is used to open a malformed GIF file. This could lead to code execution with the privileges of the user running the vulnerable application.

References

http://www.zerodayinitiative.com/advisories/ZDI-08-056/
http://www.microsoft.com/technet/security/bulletin/ms08-052.mspx
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3013

5 comments:

Shiny Tinu said...

Thanks for sharing wonderful blog. For Embedded Training in Chennai Visit Fita Academy Embedded system Training in Chennai

aliya seen said...

If you are using shopify theme manager you can design anything without content.

Cynthia D. Fagan said...

Most of the parents seems to gives the greed to their child as if they do focus on their study and got some good grades then they will get them a new car or something like that of their choice.visit the website

odms said...

I like your post....Thanks for your valuable information.

, seo services in hyderabad

janaki sree ram said...

Nice information thanks for sharing
Best SEO consultant in Chennai