Check Point Advisories

Update Protection against Microsoft Windows Kodak Image Viewer Code Execution Vulnerability (MS07-055)

Check Point Reference: CPAI-2007-121
Date Published: 28 Oct 2007
Severity: Critical
Last Updated: Monday 01 January, 2007
Source: Microsoft Security Bulletin MS07-055
Industry Reference:

CVE-2007-2217

Protection Provided by:
Who is Vulnerable? Microsoft Windows 2000 Server SP4
Microsoft Windows XP SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Vulnerability Description A buffer overflow vulnerability has been identified in Microsoft Windows Kodak Image Viewer. Kodak Image Viewer is the picture viewer of Microsoft Windows. It deals with various types of popular graphic document formats, including the Tagged Image File Format (TIFF). A remote attacker could exploit this issue via a malformed TIFF file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system.
Update/Patch AvaliableApply patches:
Microsoft Security Bulletin MS07-055
Vulnerability DetailsThe vulnerability is due to an error in Microsoft Windows Kodak Image Viewer that fails to properly parse malformed Tagged Image File Format (TIFF) files. A remote attacker could trigger this flaw by convincing a victim to open a specially TIFF file. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK