MS10-081: Vulnerability in Windows Common Control Library Could Allow Remote Code Execution (2296011)
High Nessus Plugin ID 49958
SynopsisA library on the remote Windows host has a buffer overflow vulnerability.
DescriptionThe remote host has a heap-based buffer overflow vulnerability in the Windows common control library. This vulnerability can be exploited when a user visits a specially crafted web page while using a third- party scalable vector graphics (SVG) viewer.
A remote attacker could exploit this by tricking a user into visiting a maliciously crafted web page.
SolutionMicrosoft has released a set of patches for Windows 2003, XP, Vista, 2008, 7, and 2008 R2.