Home / bulletins MS08-021 – Critical: Vulnerability in GDI Could Allow Remote Code Execution (948590) - Version:1.1
Posted on 10 April 2008
There is an newer version: MS08-021 - Version: 1.2
CriticalSeverity Rating: Critical - Revision Note: V1.1 (April 9, 2008): Bulletin updated to add a Known Issues link to Microsoft Knowledge Base Article 948590, to add a Known Issues section to the FAQ, to update the uninstall registry path, and to update the Acknowledgments.Summary: This critical security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Other versions
- MS08-021 - Version: 1.0
- MS08-021 - Version: 1.1
- MS08-021 - Version: 1.2
- MS08-021 - Version: 1.2
