CVE-2008-1087

Microsoft Windows - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote attackers to execute arbitrary code via an EMF image file with crafted filename parameters, aka "GDI Stack Overflow Vulnerability."

Exploits (2)

exploitdb WORKING POC VERIFIED

by Ac!dDrop · textremotewindows

https://www.exploit-db.com/exploits/6656

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Lamhtz · c++localwindows

https://www.exploit-db.com/exploits/5442

View Code ZIP pw:eip

References (11)

[Mailing List] http://marc.info/?l=bugtraq&m=120845064910729&w=2

[Vendor Advisory] http://secunia.com/advisories/29704

[Broken Link] http://www.osvdb.org/44215

[Patch] http://www.securityfocus.com/bid/28570

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1019798

[Third Party Advisory, US Government Resource] http://www.us-cert.gov/cas/techalerts/TA08-099A.html

[Broken Link] http://www.vupen.com/english/advisories/2008/1145/references

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-021

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/5442

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/6656

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5580

Scores

EPSS 0.6658

EPSS Percentile 98.5%

Details

CWE

CWE-119

Status published

Products (5)

microsoft/windows_2000

microsoft/windows_2003_server (6 CPE variants)

microsoft/windows-nt 2008 (3 CPE variants)

microsoft/windows_vista

microsoft/windows_xp (3 CPE variants)

Published Apr 08, 2008

Tracked Since Feb 18, 2026