Lucene search
Damian PutZDI-08-049HistoryAug 12, 2008 - 12:00 a.m.
Microsoft Windows Graphics Rendering Engine PICT Heap Corruption Vulnerability
2008-08-1200:00:00
Damian Put
www.zerodayinitiative.com
19
0.697 Medium
EPSS
Percentile
98.0%
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the handling of PICT images in an office document. Due to improper parsing of the bits_per_pixel field in a PICT image a heap overflow can occur. Successful exploitation of this vulnerability can lead to a system compromise running under the credentials of the currently logged in user.
Related
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Microsoft Office WPGεΎε½’ζδ»Άε€ηε ζΊ’εΊζΌζ΄οΌMS08-044οΌ
2008-08-14 00:00:00
securityvulns
securityvulns
prion
prion
Design/Logic Flaw
2008-08-12 23:41:00
Security feature bypass
2008-08-12 23:41:00
cvelist
cvelist
CVE-2008-3018
2008-08-12 23:00:00
CVE-2008-3021
2008-08-12 23:00:00
nvd
nvd
CVE-2008-3018
2008-08-12 23:41:00
CVE-2008-3021
2008-08-12 23:41:00
cve
cve
CVE-2008-3018
2008-08-12 23:41:00
CVE-2008-3021
2008-08-12 23:41:00
nessus
nessus
openvas
openvas