Home / Software & Gaming / Windows Graphic Rendering Security Vulnerability

Windows Graphic Rendering Security Vulnerability

Microsoft have announced a new security vulnerability which is related to the Windows Graphic Rendering Engine. Apparently it can be used by an attacker to run arbitrary code in the context of the logged on user.

Angela Gunn, senior marketing communications manager of Trustworthy computing at Microsoft said “Today we released Security Advisory 2490606, which addresses a publicly disclosed vulnerability affecting Microsoft Windows Graphics Rendering Engine on Vista, Server 2003, and Windows XP. … The vulnerability does not affect Windows 7 or Windows Server 2008 R2, the newest versions of our operating system.”

“To target this vulnerability, an attacker must convince a user to visit a specially crafted malicious Web page, or to open a malicious Word or PowerPoint file, Furthermore, users whose accounts are configured to have fewer user rights on the system would be less affected by an attack than those running with administrative rights. The Advisory includes further mitigations and workarounds to protect our customers.”

HD Moore, the chief security officer at Rapid7 said “The biggest challenge was working around DEP [data execution prevention] and ASLR [addresses space layout randomization], but the current exploit is reliable on XP SP3 and Windows 2000, It should be possible to port this to Windows 7 and embed it in a variety of file types (DOC, PPT, etc.), but the current version has a somewhat limited use case.”

The attacker has to persuade the user to browse a directory containing the file in Thumbnails mode and then the exploit relies on a complex return path using ROP (return-oriented programming), that may not work when a certain multimedia codec is updated.

“Until the exploit is ported to work within OLE containers (DOC/PPT/etc.), I don't think we will see widespread exploitation for the reasons above.” said HD Moore.

KitGuru says: Microsoft are working on a patch which is scheduled for Jan 11th.

Become a Patron!

Check Also

Resident Evil Requiem

Resident Evil Requiem will offer both 1st and 3rd person modes

Resident Evil Requiem will allow players to freely switch between a 1st and 3rd person perspective at will – a first for the series.

We've noticed that you are using an ad blocker.

Thank you for visiting KitGuru. Our news and reviews teams work hard to bring you the latest stories and finest, in-depth analysis.

We want to be as informative as possible – and to help our readers make the best buying decisions. The mechanism we use to run our business and pay some of the best journalists in the world, is advertising.

If you want to support KitGuru, then please add www.kitguru.net to your ad blocking whitelist or disable your adblocking software. It really makes a difference and allows us to continue creating the kind of content you really want to read.

It is important you know that we don’t run pop ups, pop unders, audio ads, code tracking ads or anything else that would interfere with the KitGuru experience. Adblockers can actually block some of our free content, such as galleries!