The OVAL Repository5.52012-03-26T06:26:30.725-04:00GDI+ BMP Integer Overflow VulnerabilityMicrosoft Office 2003Microsoft Office 2007Microsoft Office Visio 2002Microsoft Office XPMicrosoft PowerPoint ViewerMicrosoft SQL Server 2005Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a BMP image file with a malformed BitMapInfoHeader that triggers a buffer overflow, aka "GDI+ BMP Integer Overflow Vulnerability."Sudhir GandheDRAFTINTERIMACCEPTEDMike LahINTERIMACCEPTEDPradeep R BINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDACCEPTEDMicrosoft SQL Server 2005 SP2 is installedMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft SQL Server 2005Microsoft SQL Server 2005 SP2 is installed.J. Daniel BrownDRAFTINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDACCEPTEDMicrosoft Office Visio 2002 SP2 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003The application Microsoft Office Visio 2002 SP2 is installed.Robert L. HollisINTERIMACCEPTEDACCEPTEDMicrosoft Office XP is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows Server 2008 R2The application Microsoft Office XP is installed.Robert L. HollisINTERIMACCEPTEDJonathan BakerINTERIMJonathan BakerACCEPTEDDragos PrisacaINTERIMACCEPTEDShane ShafferINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDINTERIMDragos PrisacaACCEPTEDACCEPTEDMicrosoft SQL Server 2005 is installedMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft SQL Server 2005Microsoft SQL Server 2005 is installed.Dragos PrisacaDRAFTINTERIMACCEPTEDJ. Daniel BrownINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDACCEPTEDMicrosoft PowerPoint Viewer is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaThe application Microsoft PowerPoint Viewer is installed.Dragos PrisacaDRAFTINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDMicrosoft Office 2003 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows Server 2008 R2Microsoft Office 2003The application Microsoft Office 2003 is installed.Robert L. HollisINTERIMACCEPTEDJonathan BakerINTERIMKen LassesenACCEPTEDRachana ShettyINTERIMACCEPTEDChandan SINTERIMACCEPTEDINTERIMDragos PrisacaACCEPTEDACCEPTEDMicrosoft Office 2007 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows Server 2008 R2Microsoft Office 2007The application Microsoft Office 2007 is installed.Jonathan BakerDRAFTINTERIMACCEPTEDRobert L. HollisINTERIMJonathan BakerACCEPTEDINTERIMDragos PrisacaACCEPTEDACCEPTEDMicrosoft JScript Memory Corruption VulnerabilityMicrosoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will "release objects early" in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code.Robert L. HollisDRAFTINTERIMACCEPTEDNate PrzybyszewskiINTERIMACCEPTEDACCEPTEDHKEY_LOCAL_MACHINESoftware\Microsoft\Windows\CurrentVersion\Uninstall\{90510409-6D54-11D4-BEE3-00C04F990354}DisplayVersionHKEY_LOCAL_MACHINE^Software\\Microsoft\\Office\\10\.0\\Registration\\.*$ProductIDHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Microsoft SQL Server\90\DTS\SetupVersionHKEY_LOCAL_MACHINE^SOFTWARE\\Microsoft\\Microsoft SQL Server\\.*\\MSSQLServer\\CurrentVersion$CurrentVersionpptview.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\11.0\Common\InstallRootPathHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\12.0\Common\InstallRootInstallCountHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Microsoft SQL Server\90\DTS\SetupSPMSO.DLLOgl.dllHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersionCommonFilesDirGdiplus.dllsqlservr.exeHKEY_LOCAL_MACHINE^SOFTWARE\\Microsoft\\Microsoft SQL Server\\.*\\Setup$SQLPathsqlwb.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersionProgramFilesDirjscript.dllHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows NT\CurrentVersionSystemRoot9.00.3042.0010.2.5110.[0-9]+-.[0-9]+-.[0-9]+-.[0-9]+$^.*-OEM-.*$9.0.0.0^11\..+$0210.0.6844.012.0.6325.500011.0.8230.02005.90.3073.02005.90.3282.05.1.0.125125.5.0.05.6.0.8831\Microsoft Office\PowerPoint Viewer\Microsoft Shared\OFFICE10\Microsoft Shared\OFFICE12\Microsoft Office\Office11\Binn\Microsoft SQL Server\90\Tools\Binn\VSShell\Common7\IDE\System32