x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Encyclopedia GetVirusCard True 0

MS04-028

 
Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:MS04-028
Technical name:MS04-028
Threat level:Low
Alias:Buffer Overrun in JPEG Processing, Desbordamiento de búfer en procesamiento JPEG
Type:Vulnerability
Effects:  

It is a vulnerability in certain Microsoft products, which allows to gain remote control over the affected computer if a malicious JPEG file is viewed through a vulnerable program.

Affected platforms:

Windows 2003/XP

First detected on:March 3, 2005
Detection updated on:March 3, 2005
StatisticsNo

Brief Description 

    

MS04-028 is not categorized as virus, worm, Trojan or backdoor. It is a Microsoft security bulletin that addresses the critical vulnerability known as Buffer Overrun in JPEG processing, which allows to remotely execute arbitrary code in the vulnerable computer.

This vulnerability affects several Microsoft products including, but not limited to:

  • Operating systems: Windows 2003/XP.
  • Internet Explorer v6.0 (with Service Pack 1).
  • Office 2003 and Oficce XP.
  • Visual Studio .NET 2003 and 2002.
  • Project 2003 and 2002.
  • Visio 2003 and 2002.
  • Picture It! 2002, and versions 9.0 and 7.0.

For further information on the vulnerable programs, please refer to the Microsoft security bulletin.

If exploited successfully, MS04-028 allows hackers to gain remote control of the affected computer with the same privileges as the logged-on user. If this user had administrator rights, the hacker could take complete control of the system: create, modify or delete files, install programs, create new user accounts, etc.

Provided that any program that processes JPEG images could be vulnerable to this attack, there are many possible attack vectors in order to exploit MS04-028. All of them are based in creating a malicious JPEG file, distributing it (through web pages, e-mail messages, images embedded in documents, etc.) and enticing users into opening it.

 

If you have a Windows 2003/XP computer or any of the vulnerable programs installed in your computer, it is recommendable to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.

Visible Symptoms 

    

MS04-028 is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.