<< Back
CVE Number Vulnerability Product Severity Date
MS07-055 Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution (923810) Microsoft Windows Critical 11-10-2007

Technical Information

Brief overview of the risk:
This critical security update resolves a privately reported vulnerability. A remote code execution vulnerability exists in the way that the Kodak Image Viewer, formerly known as Wang Image Viewer, handles specially crafted images files.
Detailed Information on the risk:
An attacker could exploit the vulnerability by constructing a specially crafted image that could potentially allow remote code execution if a user visited a Web site, viewed a specially crafted e-mail message, or opened an e-mail attachment. An attacker who successfully exploited this vulnerability could take complete control of an affected system.Further information on this exploit is available at : MS07-055

Affected Software

Microsoft Windows 2000 Service Pack 4
Microsoft Windows Server 2003 Service Pack 1
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows XP Service Pack 2