Virus writers never take a day off, and neither can you. Go to the Virus Threat Center now to get daily security alerts and updates that will help you keep your systems safe.

Microsoft has released a critical update for a buffer overrun vulnerability related to image files displayed in Windows XP, Internet Explorer 6, .NET Framework, Microsoft Outlook, and Windows Server 2003. Microsoft warns that, since the component is sometimes installed by third-party software, you can still be vulnerable even after installing all updates, including the security updates provided with Microsoft Security Bulletin MS04-028.

In addition, there is an important Security Bulletin for WordPerfect Converter that can allow remote code execution.

Details

The threat lies in the way JPEG image files are processed and, as mentioned above, can exist even in fully patched systems because there are third-party applications that will remain vulnerable.

The problem lies in the GDI (Graphics Device Interface) driver that processes the way JPEG image files are displayed. The threat can be exploited in any Microsoft or third-party application using GDI. GDI is the Win32 API that gives Windows applications access to the tools necessary to display both 2D graphics and specially-formatted text, both for video displays and printouts.

Because this threat is so widespread in Microsoft applications, the vendor has provided a GDI detection tool as described in the Microsoft Knowledge Base Article 873374. It is important to read the knowledge base article before downloading the GDI tool because obtaining it one way will only allow you to run it one time, and there has already been a major update to this knowledge base article (version 2.0). [Continued...] [John McCormick]