Windows GDI+ JPEG exploit

Navigation

User login

GWT in Practice at Manning
GWT in Practice at Amazon
GWT Resources

Unlocking Android at Manning
Unlocking Android at Amazon
Android Resources

Quote

Edward Murrow

We must remember always that accusation is not proof, and that conviction depends upon evidence and due process of law. We will not walk in fear - one, of another. We will not be driven by fear into an age of un-reason, if we dig deep in our history and our doctrine, and remember that we are not descended from fearful men; Not from men who feared to write, to speak, to associate, and to defend causes that were - for the moment - unpopular.

Tue, 09/28/2004 - 11:26 — charlie.collins

A new exploit has been seen in the wild. This is not only a new issue but a new *type* of issue. The problem involves image handling code in Windows that can be exploited. More specifically in Windows' Graphic Device Interface Plus (GDI+). This is found in more than just the OS, its in Office and other apps as well. JPEG images can be made in such a way that just viewing the image on a vulnerable machine (or piece of software) can allow the exploit.

It seems that a Trojan is now in the wild that tries to FTP other backdoor enabling software to the affected machine. The images dont replicate though so this is not being called a virus. The real problems will emerge, likely soon, when an actual viral image does make the Windows scene.

See the linked news.com article for more details. Trojan horse exploits image flaw