oval:org.mitre.oval:def:4003

Definition Id: oval:org.mitre.oval:def:4003

Oval ID:	oval:org.mitre.oval:def:4003
Title:	GDI+ JPEG Parsing Engine Buffer Overflow (Windows XP)
Description:	Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0200	Version:	2
Platform(s):	Microsoft Windows XP	Product(s):	GDI+
Definition Synopsis:
Windows XP is installed AND the version of sxs.dll is less than 5.1.2600.1363