Microsoft GDI+ CVE-2012-0167 EMF Image Processing Buffer Overflow Vulnerability

Microsoft GDI+ is prone to a remote heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized buffer.

An attacker can exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts may crash the affected application.


Privacy Statement
Copyright 2010, SecurityFocus