When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

MS04-028: Buffer Overrun in JPEG Processing (GDI+)

Neowin · · Hot! with -1 comments

Thanks to xStainDx for the heads up.

Microsoft recommends that customers apply the update immediately.

This update resolves a newly-discovered, privately reported vulnerability. A buffer overrun vulnerability exists in the processing of JPEG image formats that could allow remote code execution on an affected system. The vulnerability is documented in this bulletin in its own section.

If a user is logged on with administrator privileges, an attacker who successfully exploited this vulnerability could take complete control of an affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts with full privileges. Users whose accounts are configured to have fewer privileges on the system would be at less risk than users who operate with administrative privileges.

Maximum Severity Rating: Critical

Recommendation: Customers should apply the update immediately.

Security Update Replacement: None

View: Microsoft Technet

Report a problem with article
Next Article

Bloggers bust CBS over Bush memos

Previous Article

Yahoo Acquires Musicmatch Inc.

Join the conversation!

Login or Sign Up to read and post a comment.

-1 Comments - Add comment