Microsoft GDI+ CCITT G4 TIFF File Processing Memory Corruption Remote Code Execution Vulnerability

Microsoft GDI+ CCITT G4 TIFF File Processing Memory Corruption Remote Code Execution Vulnerability

References:

Microsoft Homepage (Microsoft)
ZDI-09-072: Microsoft Windows GDI+ TIFF Parsing Code Execution Vulnerability (ZDI Disclosures )
Microsoft Security Bulletin MS09-062 (Microsoft)
Microsoft Windows GDI+ TIFF Parsing Code Execution Vulnerability (Zero Day Initiative)
New attack surface reduction feature in GDI+ (Microsoft Security Research & Defense)
Nortel Enterprise Response to Microsoft Security Bulletin MS09-062 (Nortel Networks)

Privacy Statement
Copyright 2010, SecurityFocus