Back to search
CVE-2004-0200
Published: Sep 17, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
oval:org.mitre.oval:def:3038
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:1105
vdb-entry
signature
x_refsource_OVAL
VU#297462
third-party-advisory
x_refsource_CERT-VN
TA04-260A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:3320
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:2706
vdb-entry
signature
x_refsource_OVAL
20040914 Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow
mailing-list
x_refsource_BUGTRAQ
oval:org.mitre.oval:def:1721
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:3082
vdb-entry
signature
x_refsource_OVAL
MS04-028
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:4003
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:3810
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:4216
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:4307
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:3881
vdb-entry
signature
x_refsource_OVAL
win-jpeg-bo(16304)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now