Lucene search

[email protected]CVE-2007-5348

HistorySep 11, 2008 - 1:01 a.m.

CVE-2007-5348

2008-09-1101:01:19

CWE-189

[email protected]

web.nvd.nist.gov

cve-2007-5348

gdi+

integer overflow

microsoft

security vulnerability

buffer overflow

remote code execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.772 High

EPSS

Percentile

98.2%

JSON

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via an image file with crafted gradient sizes in gradient fill input, which triggers a heap-based buffer overflow related to GdiPlus.dll and VGX.DLL, aka “GDI+ VML Buffer Overrun Vulnerability.”

Affected configurations

NVD

Node

microsoftdigital_image_suiteMatch2006

microsoftforefront_client_securityMatch1.0

microsoftinternet_explorerMatch6sp1

microsoftofficeMatch2003sp2

microsoftofficeMatch2003sp3

microsoftofficeMatchxpsp3

microsoftoffice_powerpoint_viewerMatch2003

microsoftreport_viewerMatch2005sp1

microsoftreport_viewerMatch2008

microsoftserverMatch2008

microsoftsql_serverMatch2005sp2

microsoftsql_server_reporting_servicesMatch2000sp2

microsoftvisioMatch2002sp2

microsoftworksMatch8.0

microsoftoffice_systemgold

microsoftoffice_systemsp1

microsoftwindowsMatch2003_serversp1

microsoftwindowsMatch2003_serversp2

microsoftwindows-ntMatchvistagold

microsoftwindows-ntMatchxpsp3

microsoftwindows_vistaMatch-sp1

microsoftwindows_xpMatch-sp2

CPENameOperatorVersion
microsoft:digital_image_suitemicrosoft digital image suiteeq2006
microsoft:forefront_client_securitymicrosoft forefront client securityeq1.0
microsoft:internet_explorermicrosoft internet explorereq6
microsoft:officemicrosoft officeeq2003
microsoft:officemicrosoft officeeqxp
microsoft:office_powerpoint_viewermicrosoft office powerpoint viewereq2003
microsoft:report_viewermicrosoft report viewereq2005
microsoft:report_viewermicrosoft report viewereq2008
microsoft:servermicrosoft servereq2008
microsoft:sql_servermicrosoft sql servereq2005

CPE	Name	Operator	Version
microsoft:digital_image_suite	microsoft digital image suite	eq	2006
microsoft:forefront_client_security	microsoft forefront client security	eq	1.0
microsoft:internet_explorer	microsoft internet explorer	eq	6
microsoft:office	microsoft office	eq	2003
microsoft:office	microsoft office	eq	xp
microsoft:office_powerpoint_viewer	microsoft office powerpoint viewer	eq	2003
microsoft:report_viewer	microsoft report viewer	eq	2005
microsoft:report_viewer	microsoft report viewer	eq	2008
microsoft:server	microsoft server	eq	2008
microsoft:sql_server	microsoft sql server	eq	2005