mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
892 B
892 B
CVE-2004-0200
Description
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
POC
Reference
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-028
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-028
Github
No PoCs found on GitHub currently.