CVE-2011-0041

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2 Microsoft Office version XP SP3

Description The issue is related to an integer overflow in gdiplus.dll, which is part of GDI+ in Microsoft Windows and Office. This allows remote attackers to execute arbitrary code via a crafted EMF image. The vulnerability could be exploited if a user opens a specially crafted EMF image file, potentially allowing an attacker to take complete control of an affected system. This could enable the attacker to install programs, view, change, or delete data, or create new accounts with full user rights. Users with fewer user rights on the system might be less impacted than those operating with administrative user rights.

Recommendations For Microsoft Windows XP versions SP2 through SP3, apply the recommended patch to fix the integer overflow vulnerability in gdiplus.dll. For Microsoft Windows Server 2003 version SP2, apply the recommended patch to fix the integer overflow vulnerability in gdiplus.dll. For Microsoft Windows Vista versions SP1 through SP2, apply the recommended patch to fix the integer overflow vulnerability in gdiplus.dll. For Microsoft Windows Server 2008 versions Gold through SP2, apply the recommended patch to fix the integer overflow vulnerability in gdiplus.dll. For Microsoft Office version XP SP3, apply the recommended patch to fix the integer overflow vulnerability in gdiplus.dll.