7 matches found
Microsoft Windows Kodak Image Viewer Code Execution (MS07-055) - ver 2 (CVE-2007-2217)
A buffer overflow vulnerability has been reported in Microsoft Windows Kodak Image Viewer. The vulnerability is due to improper parsing of specially crafted image files, such as TIFF files. An attacker can exploit this vulnerability by constructing a specially crafted image and enticing a victim ...
Kodak Image Viewer TIFF image handling vulnerability
Added: 10/15/2007 CVE: CVE-2007-2217 BID: 25909 OSVDB: 37627 Background The Windows Kodak Image Viewer is a utility for rendering various image formats. It is included in Windows 2000, and may also be present on newer versions of Windows if a computer was upgraded from Windows 2000. Problem A...
Microsoft Windows柯达图像查看器远程代码执行漏洞(MS07-055)
BUGTRAQ ID: 25909 CVECAN ID: CVE-2007-2217 Microsoft Windows是微软发布的非常流行的操作系统。 Windows中的柯达图像查看器处理特制图像文件的方式中存在内存破坏漏洞,远程攻击者可能利用此漏洞通过诱使用户处理畸形数据控制用户系统。 攻击者可以通过构建特制图像来利用此漏洞,如果用户访问网站、查看特制电子邮件或者打开电子邮件附件,该漏洞可能允许远程执行指令。成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Windows XP SP2 Microsoft Windows Server 2003 SP2...
DSquare Exploit Pack: D2SEC_MS07_055
Name| d2secms07055 ---|--- CVE| CVE-2007-2217 Exploit Pack| D2ExploitPack Description| Microsoft Windows Kodak Image Viewer Remote Code Execution Vulnerability Notes|...
CVE-2007-2217
Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cases XP SP2 and Server 2003 SP1 and SP2, allows remote attackers to execute arbitrary code via crafted image files that trigger memory corruption, as demonstrated by a certain .tif TIFF file...
CVE-2007-2217
CVE-2007-2217 affects Kodak Image Viewer in Windows 2000 SP4 and, in some cases, XP SP2 and Server 2003 SP1/SP2. The issue is a memory-corruption/buffer overflow in TIFF handling that allows remote code execution when a user opens a specially crafted TIFF image. Microsoft issued MS07-055 with the...
MS07-055: Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (923810)
The remote host is running a version of the Kodak Image Viewer that may allow arbitrary code to be run. An attacker may use this to execute arbitrary code on this host. To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it with this...