Home / bulletins MS09-062 - Critical: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) - Version:2.1
Posted on 04 November 2009
There is an newer version: MS09-062 - Version: 2.2
CriticalSeverity Rating: Critical - Revision Note: V2.1 (November 4, 2009): Removed erroneous references to Microsoft Office Visio Viewer 2007 as affected software; corrected the setup switches for Microsoft .NET Framework 1.1 and Microsoft .NET Framework 2.0; clarified the entry, " If I have an installation of SQL Server, how am I affected?" in the FAQ section; and corrected the removal information for Microsoft Windows 2000.Summary: This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS09-062 - Version: 2.0
- MS09-062 - Version: 2.1
- MS09-062 - Version: 1.0
- MS09-062 - Version: 1.1
- MS09-062 - Version: 2.2
