9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.963 High
EPSS
Percentile
99.5%
Added: 10/15/2007
CVE: CVE-2007-2217
BID: 25909
OSVDB: 37627
The Windows Kodak Image Viewer is a utility for rendering various image formats. It is included in Windows 2000, and may also be present on newer versions of Windows if a computer was upgraded from Windows 2000.
A memory corruption vulnerability in the Windows Kodak Image Viewer could allow command execution when a user opens a specially crafted TIFF file.
Install the update referenced in Microsoft Security Bulletin 07-055.
<http://www.microsoft.com/technet/security/bulletin/MS07-055.mspx>
Exploit requires a user to open the exploit file in Kodak Image Viewer.
Windows 2000