Visual FoxPro 8.0 GDI+ Design-Time Update

Language:
English
Visual FoxPro 8.0 design-time security update for buffer overrun vulnerability in JPEG Processing (GDI+).
  • Version:

    All

    File Name:

    VFP8-KB887684-X86.exe

    Date Published:

    12/14/2004

    File Size:

    4.1 MB

    Security bulletins:MS04-028

      As a prerequisite, this update requires a released version of Visual FoxPro 8.0. This security update resolves a newly-discovered, privately reported vulnerability. A buffer overrun vulnerability exists in the processing of JPEG image formats that could allow remote code execution on an affected system. The vulnerability and more details on this update are documented in Microsoft Security Bulletin MS04-028 at KB article 833987.
  • Supported Operating System

    Windows 2000 Service Pack 2, Windows Server 2003, Windows XP

      Same system requirements as Visual FoxPro 8.0 design-time.
    • This update requires a released version of Visual FoxPro 8.0. This security update resolves a newly-discovered, privately reported vulnerability. A buffer overrun vulnerability exists in the processing of JPEG image formats that could allow remote code execution on an affected system. The vulnerability and more details on this update are documented in Microsoft Security Bulletin MS04-028 at KB article 833987.

      Note When this program is installed on Windows XP or Windows Server 2003, it uses the operating system version of the vulnerable component. If you use this program on Windows XP, Windows XP Service Pack 1 or Windows Server 2003, make sure that you install the operating system version of the security update. If you use this program on other operating systems, make sure that you install the update for this program.

      However, if you use this program to create applications that distribute a version of the Gdiplus.dll file, you have to install this security update even if you use Windows XP or Windows Server 2003. When this update is installed the vfp_gdiplus.msm file is installed. This file is used to create applications that distribute a copy of the Gdiplus.dll file. An application developer can use the updated vfp_gdiplus.msm file to rebuild their application to use the updated version of the Gdiplus.dll file.
    • Buffer Overrun
      An attack in which a malicious user exploits an unchecked buffer in a program and overwrites the program code with their own data. If the program code is overwritten with new executable code, the effect is to change the program's operation as dictated by the attacker. If overwritten with other data, the likely effect is to cause the program to crash.
Site feedback
Microsoft

What category would you like to give web site feedback on?



Rate your level of satisfaction with this web page today:

Comments:

Submit