GDI+ JPEG rendering exploit : Microsoft Security Discussions

GDI+ JPEG rendering exploit

7 posts • Page 1 of 1

GDI+ JPEG rendering exploit

by jd2kuk » Sun Feb 03, 2008 6:31 pm

Anyone remember this?

Also, anyone got any experience in exploiting it

jd2kuk: Posts: 1541; Joined: Thu Mar 15, 2007 11:19 pm; Location: UK

Advertisement

Re: GDI+ JPEG rendering exploit

by Majik » Mon Feb 25, 2008 3:35 pm

That was fun.

Don't think it's used much anymore now though :/

Posts: 83

Joined: Tue Dec 24, 2002 5:26 pm

ICQ

Re: GDI+ JPEG rendering exploit

by jd2kuk » Mon Feb 25, 2008 4:34 pm

Don't know why; loads of computers are vulnerable to it right now.

jd2kuk: Posts: 1541; Joined: Thu Mar 15, 2007 11:19 pm; Location: UK

Re: GDI+ JPEG rendering exploit

by Majik » Mon Feb 25, 2008 8:25 pm

Interesting, I wonder if a new update that was released broke it again.

Any idea on the system info on the vulnerable machines?

Posts: 83

Joined: Tue Dec 24, 2002 5:26 pm

ICQ

Re: GDI+ JPEG rendering exploit

by jd2kuk » Tue Feb 26, 2008 5:22 pm

Knowing microsoft, it wouldn't surprise me

And it affects pre-SP2 windows xp installs.

jd2kuk: Posts: 1541; Joined: Thu Mar 15, 2007 11:19 pm; Location: UK

Re: GDI+ JPEG rendering exploit

by missi0n » Tue Apr 15, 2008 6:48 pm

I've not got a clue what exploit you're on about? care to explain

Posts: 261

Joined: Sat Jan 27, 2007 8:15 pm

Location: UK

Website

Re: GDI+ JPEG rendering exploit

by jd2kuk » Tue Apr 15, 2008 10:21 pm

To sum it up dramatically: imagine being able to give a person a virus, or remotely execute commands on their computer- just by them looking at a picture.

Science fiction? Nope, today's fact.

The gory details are here: http://www.milw0rm.com/search.php?dong= ... ows%20jpeg

jd2kuk: Posts: 1541; Joined: Thu Mar 15, 2007 11:19 pm; Location: UK

7 posts • Page 1 of 1

Return to Microsoft Security Discussions

Who is online

Users browsing this forum: No registered users and 1 guest

Advertisement