CVE-2007-3034
published 2007-08-14CVE-2007-3034: Integer overflow in the AttemptWrite function in Graphics Rendering Engine (GDI) on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 allows remote…
PriorityP263critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
54.75%
98.9th percentile
Integer overflow in the AttemptWrite function in Graphics Rendering Engine (GDI) on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted metafile (image) with a large record length value, which triggers a heap-based buffer overflow.
Detection & IOCsextracted from sources · hover to see the quote
- →Crafted WMF/metafile with a large record length value triggers integer overflow in GDI32.dll AttemptWrite function, leading to heap-based buffer overflow; inspect WMF files for anomalously large record length fields. ↗
- →Vulnerable component is GDI32.dll version 5.1.2600.3099 on Windows XP SP2; flag processes loading this specific DLL version parsing untrusted WMF files. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/26423http://www.kb.cert.org/vuls/id/640136http://www.securityfocus.com/archive/1/476505/100/0/threadedhttp://www.securityfocus.com/bid/25302http://www.securitytracker.com/id?1018563http://www.us-cert.gov/cas/techalerts/TA07-226A.htmlhttp://www.vupen.com/english/advisories/2007/2870https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-046https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2088http://secunia.com/advisories/26423http://www.kb.cert.org/vuls/id/640136http://www.securityfocus.com/archive/1/476505/100/0/threadedhttp://www.securityfocus.com/bid/25302http://www.securitytracker.com/id?1018563http://www.us-cert.gov/cas/techalerts/TA07-226A.htmlhttp://www.vupen.com/english/advisories/2007/2870https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-046https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2088
2007-08-14
Published