SecurityHome.eu MS09-062 - Critical: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)

Home / bulletins

MS09-062 - Critical: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) - Version:1.1
Posted on 15 October 2009
There is an newer version: MS09-062 - Version: 2.2
Critical
Severity Rating: Critical - Revision Note: V1.1 (October 14, 2009): Added Microsoft SQL Server 2005 Express Edition Service Pack 3 to the Non-Affected Software table, and updated the Developer Tools entries in the Detection and Deployment Tools and Guidance section.Summary: This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Link
Other versions
MS09-062 - Version: 2.0
MS09-062 - Version: 2.1
MS09-062 - Version: 1.0
MS09-062 - Version: 1.1
MS09-062 - Version: 2.2

TOP

Bulletins :

Last 20

Exploits :

Last 20