MS11-029: Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
High Nessus Plugin ID 53386
SynopsisArbitrary code can be executed on the remote Windows host through Microsoft's GDI+ subsystem.
DescriptionThe version of Microsoft's GDI+ subsystem installed on the remote Windows host contains an integer overflow due to the way that GDI+ handles integer calculations.
If an attacker can trick a user on the affected system into opening a specially crafted EMF image file, this issue could be exploited to execute arbitrary code subject to the user's privileges.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, and 2008.