Microsoft Windows GDI File Size Parameter Heap Overflow Vulnerability

info
discussion
exploit
solution
references

Microsoft Windows GDI File Size Parameter Heap Overflow Vulnerability

The GDI component of Microsoft Windows is prone to a heap-overflow vulnerability that may be triggered by a malicious WMF (Windows Metafile) image. A successful exploit will let the attacker execute arbitrary code in the context of the currently logged-in user.