Vulnonym.org

CVE-2008-1087 - Lentiginous Circulation

Description

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4 XP SP2 Server 2003 SP1 and SP2 Vista and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters aka \GDI Stack Overflow Vulnerability.\

Reference

http://www.securityfocus.com/bid/28570 http://www.securitytracker.com/id?1019798 http://secunia.com/advisories/29704 http://www.us-cert.gov/cas/techalerts/TA08-099A.html http://www.osvdb.org/44215 http://www.vupen.com/english/advisories/2008/1145/references http://marc.info/?l=bugtraq&m=120845064910729&w=2 https://www.exploit-db.com/exploits/6656 https://www.exploit-db.com/exploits/5442 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5580 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-021