DiamondCS JpegScan

Discussion in 'Computer Security' started by Rod S, Oct 24, 2004.

  1. Rod S

    Rod S Guest

    Program to scan for Jpeg exploit....

    http://www.diamondcs.com.au/jpegscan/

    What is the MS04-028 JPEG exploit?
    On September 14 2004, Nick DeBaggis discovered a buffer overrun
    vulnerability in gdiplus.dll - a library used by many common applications
    (including most Microsoft applications) for viewing JPEG images. Subsequent
    analysis by the eEye team confirmed that the vulnerability could be
    exploited to execute arbitrary code, allowing an attacker to gain control of
    a remote system simply by enticing the victim to look at a specially-crafted
    JPEG image. MS04-028 is the tracking code assigned by Microsoft to this
    specific vulnerability.
     
    Rod S, Oct 24, 2004
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Mike Saunders

    DiamondCS

    Mike Saunders, May 5, 2004, in forum: Computer Security
    Replies:
    2
    Views:
    484
    Ed Benton
    May 8, 2004
  2. Replies:
    0
    Views:
    548
Loading...

Share This Page