header-logo
Suggest Exploit
vendor:
Windows
by:
Unknown
7.5
CVSS
HIGH
Remote Elevation of Privilege
269
CWE
Product Name: Windows
Affected Version From: Windows XP, Windows Server 2003
Affected Version To: Windows XP SP2, Windows Server 2003 SP1
Patch Exists: YES
Related CWE: CVE-2007-0038
CPE: o:microsoft:windows
Other Scripts:
Platforms Tested: Windows
2007

MS Windows (.ANI) GDI Remote Elevation of Privilege Exploit (MS07-017)

This exploit targets a vulnerability in the GDI component of MS Windows, specifically related to .ANI files. By exploiting this vulnerability, an attacker can elevate their privileges on the targeted system. The exploit takes advantage of the MS07-017 security update.

Mitigation:

To mitigate this vulnerability, users should apply the MS07-017 security update provided by Microsoft.
Source

Exploit-DB raw data:

MS Windows (.ANI) GDI Remote Elevation of Privilege Exploit (MS07-017)

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/3804.zip (04262007-gdi_remote_elevation_privilege_exploit_ms07_017_principal.zip)

# milw0rm.com [2007-04-26]