| Patch Name : |
officexp-kb832332-v2-fullfile-enu.exe |
| Patch Description : |
Office XP Security Update: KB832332 |
| Bulletin Id : |
MS04-028 |
| Bulletin Title : |
Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987) |
| KnowledgeBase : | 832332 |
| Severity : |
Critical |
| Location Path : | officexp-kb832332-v2-fullfile-enu.exe |
| Bulletin Summary: |
This update resolves a newly-discovered, privately reported vulnerability. A buffer overrun vulnerability exists in the processing of JPEG image formats that could allow remote code execution on an affected system. The vulnerability is documented in this bulletin in its own section.
If a user is logged on with administrator privileges, an attacker who successfully exploited this vulnerability could take complete control of an affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts with full privileges. Users whose accounts are configured to have fewer privileges on the system would be at less risk than users who operate with administrative privileges. |
| Superceding Bulletin Id : |
MS05-005 |
| Patch Release Date : |
Sep 14, 2004 |
| CVE Id : | CAN-2004-0200 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| Office XP | Office XP SP2 |
|
| File changes |
|
| File Path |
Version |
| %commonfiles%\Microsoft Shared\Office10\mso.dll | 10.0.6714.0 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| No records found | | |
