Integer Overflow Vulnerability in Microsoft Windows GDI
CVE-2013-3940

Currently unrated

Key Information:

Vendor
Microsoft
Vendor
CVE Published:
13 November 2013

Summary

The vulnerability in the Graphics Device Interface (GDI) of various Microsoft Windows versions allows attackers to exploit integer overflow issues. When a specially crafted image is processed within a Windows Write (.wri) document, it can lead to memory corruption. This flaw not only enables attackers to execute arbitrary code remotely but also poses risks of causing a denial of service by crashing the affected application.

References

EPSS Score

67% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.