Gaborseljan

**Name of the Vulnerable Software and Affected Versions** Windows GDI+ (affected versions not specified) **Description** A heap-based buffer overflow exists in Windows GDI+, where a heap-based buffer overflow is a memory corruption issue that occurs when a program writes more data to a heap-allocated memory block than it can hold. This flaw allows an unauthorized remote attacker to execute arbitrary code and gain unauthorized access to protected information by loading a specially crafted metafile or through malicious websites. **Recommendations** Apply the Microsoft August 2025 Patch Tuesday updates.

Name of the Vulnerable Software and Affected Versions: Windows GDI (affected versions not specified) Description: The issue is related to a protection mechanism failure in Windows GDI, allowing an unauthorized attacker to disclose information over a network. This failure enables the attacker to access sensitive data without proper authorization. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the "Public Account Pictures" folder, which improperly handles junctions. To exploit this, an attacker must first gain execution on the victim system. This allows the attacker to potentially elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.