7 matches found
Secunia Research: Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay()" EMF Parsing Memory Corruption Vulnerability
====================================================================== Secunia Research 15/04/2015 Microsoft Windows GDI "MRSETDIBITSTODEVICE ::bPlay" EMF Parsing Memory Corruption Vulnerability ====================================================================== Table of Contents Affected...
CVE-2015-1645
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow remote attackers to execute arbitrary code via a crafted Enhanced Metafile EMF image, aka "EMF Processing Remote Code Execution Vulnerability."...
CVE-2015-1645
CVE-2015-1645 is a remote code execution vulnerability affecting Windows NT-based clients/servers (Windows Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1). It stems from a flaw in EMF processing in GDI32.dll (MRSETDIBITSTODEVICE::bPlay), enabling remote attackers to execute arb...
Microsoft Windows EMF Processing Remote Code Execution (MS15-035; CVE-2015-1645)
A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly processes specially crafted Enhanced Metafile EMF image format files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted EMF...
Microsoft Windows Graphics Component CVE-2015-1645 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Avaya CallPilot 4.0 Avaya...
KLA10549 Code execution vulnerability in Microsoft GC
An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed EMF image. Original advisories MS15-035 CVE-2015-1645 Related products...
MS15-035: Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3046306)
The version of Microsoft's Graphics Component installed on the remote host is affected by a remote code execution vulnerability due improper handling of specially crafted Enhanced Metafile EMF image format files by GDI+. A remote, unauthenticated attacker can exploit this vulnerability by...