Intrusion Prevention

MS.JPEG.Processing.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in multiple Microsoft products.
The vulnerability is due to an error when the vulnerable software handles a malformed JPEG file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted JPEG file.

Affected Products

Microsoft .NET Framework 1.0 SP2
Microsoft .NET Framework 1.1
Microsoft Digital Image 9
Microsoft Digital Image Pro 7.0
Microsoft Digital Image Pro 9
Microsoft GDI Source Development Kit Redistributable
Microsoft Greetings Workshop 2002
Microsoft Internet Explorer 6 SP1
Microsoft Office 2003
Microsoft Office XP SP3
Microsoft Picture It! 7.0
Microsoft Picture It! 9
Microsoft Picture It! 2002
Microsoft PowerPoint Producer for Powerpoint
Microsoft Project 2002 SP1
Microsoft Project 2003
Microsoft Visio 2002 SP2
Microsoft Visio 2003
Microsoft Visual Studio .NET 2002
Microsoft Visual Studio .NET 2003
Microsoft Windows Server 2003
Microsoft Windows Server 2003 64-Bit Edition
Microsoft Windows Windows XP 64-bit Edition Version 2003
Microsoft Windows XP
Microsoft Windows XP 64-bit Edition
Microsoft Windows XP 64-bit Edition SP1
Microsoft Windows XP SP1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.microsoft.com/technet/security/bulletin/MS04-028.mspx

CVE References

CVE-2004-0200