Home / bulletins MS08-021 â Critical: Vulnerability in GDI Could Allow Remote Code Execution (948590) - Version:1.2
Posted on 18 June 2008
Severity Rating: Critical - Revision Note: V1.2 (April 11, 2008): Bulletin updated to remove a reference to unsupported software in the Vulnerability FAQs.Summary: This critical security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Other versions
- MS08-021 - Version: 1.0
- MS08-021 - Version: 1.1
- MS08-021 - Version: 1.2
- MS08-021 - Version: 1.2
