Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (Generic)  >   Microsoft Greetings Vendors:   Microsoft
(Microsoft Issues Fix for Greetings) Microsoft GDI+ Buffer Overflow in Processing JPEG Images Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1011263
SecurityTracker URL:
CVE Reference:   CVE-2004-0200   (Links to External Site)
Date:  Sep 14 2004
Impact:   Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via local system, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2002
Description:   A buffer overflow vulnerability in the processing of JPEG image formats was reported in the GDI+ code in several Microsoft operating systems and applications. A remote user can execute arbitrary code on the target system. Any application that processes JPEG images may be affected.

Microsoft reported that a remote user can create a specially crafted JPEG image that, when processed by an affected component, will execute arbitrary code on the target system. The code will run with the privileges of the calling application.

Windows XP, Windows XP Service Pack 1, and Windows Server 2003 are vulnerable by default, but other operating systems may be affected if certain vulnerable components have been installed, such as Microsoft .NET Framework and various 3rd party applications.

Affected applications include Office XP (Outlook, Word, Excel, PowerPoint, FrontPage, Publisher), Office 2003 (Outlook, Word, Excel, PowerPoint, FrontPage, Publisher, InfoPath, OneNote), Microsoft Project, Microsoft Visio, Microsoft Visual Studio .NET (Visual Basic .NET Standard, Visual C# .NET Standard, Visual C++ .NET Standard, Visual J# .NET Standard), Microsoft .NET Framework, Microsoft Picture It!, Microsoft Greetings, Microsoft Digital Image Pro, Microsoft Digital Image Suite, Microsoft Producer for Microsoft Office PowerPoint, Microsoft Platform SDK Redistributable: GDI+, and Internet Explorer 6.

Microsoft credits Nick DeBaggis with reporting this flaw.

The original advisory is available at:

Impact:   A remote user can execute arbitrary code on the target system with the privileges of the target user or process.
Solution:   The vendor has issued the following fixes.

Microsoft Windows XP and Microsoft Windows XP Service Pack 1:

Microsoft Windows XP 64-Bit Edition Service Pack 1:

Microsoft Windows XP 64-Bit Edition Version 2003:

Microsoft Windows Server 2003:

Microsoft Windows Server 2003 64-Bit Edition:

Microsoft Office XP Service Pack 3 (Outlook 2002, Word 2002, Excel 2002, PowerPoint 2002, FrontPage 2002, Publisher 2002):

Microsoft Office 2003 (Outlook 2003, Word 2003, Excel 2003, PowerPoint 2003, FrontPage 2003, Publisher 2003, InfoPath 2003, OneNote 2003):

Microsoft Project 2002 Service Pack 1 (all versions):

Microsoft Project 2003 (all versions):

Microsoft Visio 2002 Service Pack 2 (all versions):

Microsoft Visio 2003 (all versions):

Microsoft Visual Studio .NET 2002 (Visual Basic .NET Standard 2002, Visual C# .NET Standard 2002, Visual C++ .NET Standard 2002):

Microsoft Visual Studio .NET 2003 (Visual Basic .NET Standard 2003, Visual C# .NET Standard 2003, Visual C++ .NET Standard 2003, Visual J# .NET Standard 2003):

The Microsoft .NET Framework version 1.0 SDK Service Pack 2:

Microsoft Picture It! 2002 (all versions):

Microsoft Greetings 2002:

Microsoft Picture It! version 7.0 (all versions):

Microsoft Digital Image Pro version 7.0:

Microsoft Picture It! version 9 (All Versions, including Picture It! Library):

Microsoft Digital Image Pro:

Microsoft Digital Image Suite version 9:

Microsoft Producer for Microsoft Office PowerPoint (all versions):

Microsoft Platform SDK Redistributable: GDI+:
The update was not listed in the advisory at the time of this entry.

Internet Explorer 6 Service Pack 1:

The Microsoft .NET Framework version 1.0 Service Pack 2:

The Microsoft .NET Framework version 1.1:

Windows Journal Viewer:

Microsoft reports that an administrative update is also available for Office XP (applicable to Service Pack 2 and Service Pack 3) and Office 2003. See the advisory for more information.

Microsoft also indicates that MSN 9 users should install the Picture It! version 9 update only if they have installed Picture It! Express version 9 or Picture It! Library when MSN 9 was installed.

Microsoft has issued a tool to help you identify if you are running an affected component, available at:;EN-US;873374

On October 12, Microsoft released a new MS04-028 Enterprise Update Scanning Tool to help in applying the patches:

Microsoft reports that users of Visio Viewer and PowerPoint Viewer programs should update to the latest versions to obtain the fix.

Visio 2002 Viewer:

Visio 2003 Viewer:

PowerPoint 2003 Viewer:

Known issues related to the installation of the patch are described at:;en-us;833987

On October 12, 2004, Microsoft warned that there are certain cases when the original versions of the Office, Visio, and Project security updates may not have installed properly. For more information, see:;en-us;833987

A fix is also included as part of Microsoft Office 2003 SP2, available at:

Vendor URL: (Links to External Site)
Cause:   Boundary error
Underlying OS:  Windows (Any)

Message History:   This archive entry is a follow-up to the message listed below.
Sep 14 2004 Microsoft GDI+ Buffer Overflow in Processing JPEG Images Lets Remote Users Execute Arbitrary Code

 Source Message Contents

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, LLC