Lucene search
K

10 matches found

Trellix
Trellix
added 2023/05/03 12:0 a.m.38 views

The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component

The Art of Information Disclosure: A Deep Dive into CVE-2022-37985, a Unique Information Disclosure Vulnerability in Windows Graphics Component By Bing Sun · May 03, 2023 Overview In October 2022, Microsoft released a security patch to address a unique information disclosure vulnerability in the...

5.5CVSS7.8AI score0.38347EPSS
Exploits0
0day.today
0day.today
added 2017/03/20 12:0 a.m.83 views

Microsoft GDI+ - gdiplus!GetRECTSForPlayback Out-of-Bounds Read (MS17-013)

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1042 We have encountered a crash in the Windows GDI+ library, in the gdiplus!GetRECTSForPlayback function, while trying to display a malformed EMF+ image file: --- 6be8.6f1c: Acces...

1.9CVSS6.4AI score0.15939EPSS
Exploits1
securityvulns
securityvulns
added 2011/04/13 12:0 a.m.49 views

VUPEN Security Research - Microsoft Windows GDI+ Size Handling Integer Overflow Vulnerability

VUPEN Security Research - Microsoft Windows GDI+ Size Handling Integer Overflow Vulnerability http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Windows is a series of software operating systems and graphical user interfaces produced by Microsoft. Windows had...

9.3CVSS0.2AI score0.28157EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2009/04/13 12:0 a.m.5 views

Update Protection against Microsoft Windows GDIplus GpFont.SetData Integer Overflow

A vulnerability has been reported in Microsoft Windows Graphics Device Interface GDI. GDI is a Microsoft standard for representing graphical objects and outputting these representations to devices such as monitors and printers. The vulnerability occurs when an application that uses the affected...

4.3CVSS6.2AI score0.16327EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/03/10 12:0 a.m.35 views

Microsoft Windows Kernel Input Validation Remote Code Execution (MS09-006; CVE-2009-0081)

The Windows kernel is the core of the operating system. It provides system level services, allocates processor time to processes, and manages error handling. A remote code execution vulnerability has been discovered in the Windows kernel.The vulnerability is due to an error in the Windows kernel...

9.3CVSS7.3AI score0.32106EPSS
Exploits0
NVD
NVD
added 2008/09/11 1:11 a.m.25 views

CVE-2008-3012

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006,...

9.3CVSS7.8AI score0.31037EPSS
Exploits1References9
CVE
CVE
added 2008/09/10 3:0 p.m.85 views

CVE-2008-3012

CVE-2008-3012 corresponds to an in-GDI+ memory allocation flaw in gdiplus.dll that could allow remote code execution when a specially crafted EMF image is viewed. Connected docs confirm this as MS08-052, addressing vulnerabilities in GDI+ across Windows and Office components (IE6, Windows XP, Ser...

9.3CVSS7.7AI score0.31037EPSS
Exploits1References9Affected Software16
Prion
Prion
added 2008/04/08 11:5 p.m.22 views

Stack overflow

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."...

9.3CVSS8.6AI score0.56603EPSS
Exploits5References11Affected Software1
NVD
NVD
added 2008/04/08 11:5 p.m.26 views

CVE-2008-1087

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."...

9.3CVSS7.9AI score0.56603EPSS
Exploits5References11
Cvelist
Cvelist
added 2008/04/08 11:0 p.m.29 views

CVE-2008-1087

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."...

7.9AI score0.56603EPSS
Exploits5References11
Rows per page
Query Builder