Microsoft GDI+ Malformed Office BMP File Integer Overflow Remote Code Execution Vulnerability

Microsoft GDI+ Malformed Office BMP File Integer Overflow Remote Code Execution Vulnerability

References:

Secunia Research: Microsoft Office BMP Image Colour Handling Integer Overfl (Secunia Research)
Microsoft Homepage (Microsoft)
Secunia Research: Microsoft Office BMP Image Colour Handling Integer Overflow (Secunia Research )
Microsoft Security Bulletin MS09-062 (Microsoft)
New attack surface reduction feature in GDI+ (Microsoft Security Research & Defense)
Nortel Enterprise Response to Microsoft Security Bulletin MS09-062 (Nortel Networks)

Privacy Statement
Copyright 2010, SecurityFocus