Integer overflow in the AttemptWrite function in Graphics Rendering Engine (GDI) on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted metafile (image) with a large record length value, which triggers a heap-based buffer overflow.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-08-14 14:17
Updated : 2019-02-26 06:04
NVD link : CVE-2007-3034
Mitre link : CVE-2007-3034
JSON object : View
CWE
CWE-189
Numeric Errors
Products Affected
microsoft
- windows_xp
- windows_2003_server
- windows_2000
- windows_server_2003