Microsoft GDI32.DLL EMR_SETDIBITSTODEVICE Boundary Error Lets Local Users View Portions of System Memory on the Target System
|
|
SecurityTracker Alert ID: 1037845 |
|
SecurityTracker URL: http://securitytracker.com/id/1037845
|
|
CVE Reference:
CVE-2017-0038
(Links to External Site)
|
Updated: Mar 14 2017
|
Original Entry Date: Feb 16 2017
|
Impact:
Disclosure of system information, Disclosure of user information
|
Fix Available: Yes Vendor Confirmed: Yes Exploit Included: Yes
|
Version(s): Vista SP2, 2008 SP2, 7 SP1, 2008 R2 SP1, 2012, 2012 R2, 10, 10 version 1511, 10 version 1607
|
Description:
A vulnerability was reported in Microsoft Windows GDI32.DLL. A local user can obtain potentially sensitive information from system memory.
A local user can open a specially crafted EMF file to trigger a boundary error in the EMR_SETDIBITSTODEVICE record handler and obtain potentially sensitive information from system memory on the target system.
The vendor has assigned MSRC-36050 to this vulnerability.
The original advisory is available at:
https://bugs.chromium.org/p/project-zero/issues/detail?id=992
Mateusz Jurczyk reported this vulnerability.
|
Impact:
A local user can obtain potentially sensitive information from system memory on the target system.
|
Solution:
The vendor has issued a fix.
The vendor advisory is available at:
https://technet.microsoft.com/library/security/ms17-013
|
Vendor URL: technet.microsoft.com/library/security/ms17-013 (Links to External Site)
|
Cause:
Boundary error
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
