Tom's Guide > Forum > Windows 2000/NT > Windows 2000/NT General Discussion > gdiplus.dll vulnerability

gdiplus.dll vulnerability

Forum Windows 2000/NT : Windows 2000/NT General Discussion - gdiplus.dll vulnerability

TomsGuide.com: Over 800,000 questions and answers to address all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
Anonymous   10-01-2004 at 06:38:32 PM

Archived from groups: microsoft.public.win2000.security (More info?)

 

With the last updates in place in W2000 and Office 2003, I
tested W2000 with
GDIScan "http://isc.sans.org/gdiscan.php".
Results:
C/WINNT/system32/gdiplus.dll is still vulnerable ( version
5.1.3097.0).It affects other programs (Norton SystenWorks,
Macromedia).

I have other versions of.gdiplus.dll with no
vulnerability. (version 5.1.3102.13600)-Microsoft net.
Any idea why the last Microsoft gdiplus does not correct
this vulnerability?

Add a reply
Sponsored Links
Register or log in to remove.
Anonymous   10-02-2004 at 04:22:31 AM
- 0 +

Archived from groups: microsoft.public.win2000.security (More info?)

 

eliric wrote:

> With the last updates in place in W2000 and Office 2003, I
> tested W2000 with
> GDIScan "http://isc.sans.org/gdiscan.php".
> Results:
> C/WINNT/system32/gdiplus.dll is still vulnerable ( version
> 5.1.3097.0).It affects other programs (Norton SystenWorks,
> Macromedia).
>
> I have other versions of.gdiplus.dll with no
> vulnerability. (version 5.1.3102.13600)-Microsoft net.
> Any idea why the last Microsoft gdiplus does not correct
> this vulnerability?
Hi

No Microsoft software puts gdiplus.dll in %windir%\System32\
(it would have been placed there by some 3rd party program
installation), so no security updates from Microsoft will
update a %windir%\System32\gdiplus.dll file.


Just replace the file yourself with the gdiplus.dll v5.1.3102.1360
file that is available here:

Platform SDK Redistributable: GDI+
http://www.microsoft.com/downloads [...] laylang=en
(this download link is also found in the MS04-028 bulletin)



--
torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
Administration scripting examples and an ONLINE version of
the 1328 page Scripting Guide:
http://www.microsoft.com/technet/s [...] fault.mspx

Reply to Anonymous
Anonymous   10-02-2004 at 04:22:32 AM
- 0 +

Archived from groups: microsoft.public.win2000.security (More info?)

 

Thanks Torgeir for the info.
I suspect the 3rd party is the Macromedia programs flash
mx2004,FireworksMX2004 or Dreamweaver2004.
All them had the vulnerable gdiplus.dll.
Anyway I corrected everything following your instructions.
>-----Original Message-----
>eliric wrote:
>
>> With the last updates in place in W2000 and Office
2003, I
>> tested W2000 with
>> GDIScan "http://isc.sans.org/gdiscan.php".
>> Results:
>> C/WINNT/system32/gdiplus.dll is still vulnerable (
version
>> 5.1.3097.0).It affects other programs (Norton
SystenWorks,
>> Macromedia).
>>
>> I have other versions of.gdiplus.dll with no
>> vulnerability. (version 5.1.3102.13600)-Microsoft net.
>> Any idea why the last Microsoft gdiplus does not
correct
>> this vulnerability?
>Hi
>
>No Microsoft software puts gdiplus.dll in %windir%
\System32\
>(it would have been placed there by some 3rd party program
>installation), so no security updates from Microsoft will
>update a %windir%\System32\gdiplus.dll file.
>
>
>Just replace the file yourself with the gdiplus.dll
v5.1.3102.1360
>file that is available here:
>
>Platform SDK Redistributable: GDI+
>http://www.microsoft.com/downloads/details.aspx?
FamilyId=6A63AB9C-DF12-4D41-933C-
BE590FEAA05A&displaylang=en
>(this download link is also found in the MS04-028
bulletin)
>
>
>
>--
>torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
>Administration scripting examples and an ONLINE version of
>the 1328 page Scripting Guide:
>http://www.microsoft.com/technet/scriptcenter/default.mspx
>.
>

Reply to Anonymous
Ask the community Add a reply
Tom's Guide > Forum > Windows 2000/NT > Windows 2000/NT General Discussion > gdiplus.dll vulnerability
Go to:

There are 11 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.401 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Google ads