CVE-2008-3015 (CNNVD-200809-113)
中文标题:
Microsoft GDI+ BMP 整数溢出漏洞
英文标题:
Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Mi...
漏洞描述
中文描述:
Microsoft GDI+通过基于类的API提供对各种图形方式的访问。 多款Microsft软件(Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0)GDI+的gdiplus.dll存在整数溢出漏洞。 远程攻击者可利用包含畸形BitMapInfoHeader的BMP图片文件,触发缓冲区溢出,执行任意指令。 该漏洞也称为"GDI+ BMP 整数溢出漏洞"。
英文描述:
Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a BMP image file with a malformed BitMapInfoHeader that triggers a buffer overflow, aka "GDI+ BMP Integer Overflow Vulnerability."
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| microsoft | digital_image_suite | 2006 | - | - |
cpe:2.3:a:microsoft:digital_image_suite:2006:*:*:*:*:*:*:*
|
| microsoft | forefront_client_security | 1.0 | - | - |
cpe:2.3:a:microsoft:forefront_client_security:1.0:*:*:*:*:*:*:*
|
| microsoft | office | 2003 | - | - |
cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
|
| microsoft | office | 2007 | - | - |
cpe:2.3:a:microsoft:office:2007:*:gold:*:*:*:*:*
|
| microsoft | office | xp | - | - |
cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
|
| microsoft | office_powerpoint_viewer | 2003 | - | - |
cpe:2.3:a:microsoft:office_powerpoint_viewer:2003:*:*:*:*:*:*:*
|
| microsoft | report_viewer | 2005 | - | - |
cpe:2.3:a:microsoft:report_viewer:2005:sp1:*:*:*:*:*:*
|
| microsoft | report_viewer | 2008 | - | - |
cpe:2.3:a:microsoft:report_viewer:2008:*:*:*:*:*:*:*
|
| microsoft | sql_server | 2005 | - | - |
cpe:2.3:a:microsoft:sql_server:2005:sp2:*:*:*:*:*:*
|
| microsoft | sql_server_reporting_services | 2000 | - | - |
cpe:2.3:a:microsoft:sql_server_reporting_services:2000:sp2:*:*:*:*:*:*
|
| microsoft | visio | 2002 | - | - |
cpe:2.3:a:microsoft:visio:2002:sp2:*:*:*:*:*:*
|
| microsoft | works | 8.0 | - | - |
cpe:2.3:a:microsoft:works:8.0:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
CVSS评分详情
AV:N/AC:M/Au:N/C:C/I:C/A:C
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2008-3015 |
2025-11-11 15:18:01 | 2025-11-11 07:32:53 |
| NVD | nvd_CVE-2008-3015 |
2025-11-11 14:52:35 | 2025-11-11 07:41:39 |
| CNNVD | cnnvd_CNNVD-200809-113 |
2025-11-11 15:09:02 | 2025-11-11 07:49:28 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 数字错误
- cnnvd_id: 未提取 -> CNNVD-200809-113
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- severity: SeverityLevel.MEDIUM -> SeverityLevel.CRITICAL
- cvss_score: 未提取 -> 9.3
- cvss_vector: NOT_EXTRACTED -> AV:N/AC:M/Au:N/C:C/I:C/A:C
- cvss_version: NOT_EXTRACTED -> 2.0
- affected_products_count: 0 -> 12
- references_count: 16 -> 15
- data_sources: ['cve'] -> ['cve', 'nvd']