ISS Protection Brief: Microsoft GDI+ JPEG Processing Exploitation

From: X-Force (xforce_at_iss.net)
Date: 09/23/04

  • Next message: Brass, Phil (ISS Atlanta): "RE: Has anyone ever exploited these Websphere (WAS) Weaknesses, If so How ? Can anyone Elaborate ?"
    Date: Thu, 23 Sep 2004 16:55:31 -0400 (EDT)
    To: alert@iss.net
    
    

    -----BEGIN PGP SIGNED MESSAGE-----

    Internet Security Systems Protection Brief
    September 23, 2004

    Microsoft GDI+ JPEG Processing Exploitation

    Summary:
    Active Exploitation of a critical vulnerability in Microsoft GDI+ JPEG
    processing outlined in MS04-028 has been observed. This vulnerability may
    be exploited to execute arbitrary code on the targeted system and further
    exploit refinement may lead to the development of a network worm.

    Business Impact:

    By exploiting this vulnerability it is possible for an
    attacker to run arbitrary code on target systems. Successful
    exploitation can be leveraged to gain complete control over target
    systems, and may lead to malware installation, exposure of
    confidential information, or further network compromise. To be vulnerable
    to exploitation, a victim would have to locally view or preview a
    malicious JPEG image on a vulnerable platform.

    For the complete X-Force Protection Alert, please visit:
    http://xforce.iss.net/xforce/alerts/id/182

    -----BEGIN PGP SIGNATURE-----
    Version: 2.6.2

    iQCVAwUBQVM4KjRfJiV99eG9AQG5mwP+POMw6LMBsFYbvySnyfRhogwnVHNkyJVY
    FjX+VTlqhOsgQTtUKLKvaGvJ4r/nLuFXuce7pEzv7LBId/St845J6CiKkAUep1tY
    5V5G7sWFwuyl+Frgo+sRfClR0nt1HV1gfFcV+Yk3eXstbI+MPQuGLCF4BX5S30K+
    NSHANRjVwEY=
    =DO+K
    -----END PGP SIGNATURE-----


  • Next message: Brass, Phil (ISS Atlanta): "RE: Has anyone ever exploited these Websphere (WAS) Weaknesses, If so How ? Can anyone Elaborate ?"