MS09-062: Vulnerabilities in GDI+ could allow remote code execution

Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: Support is ending for some versions of Windows.
Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: Support is ending for some versions of Windows.

INTRODUCTION

Microsoft has released security bulletin MS09-062. To view the complete security bulletin, visit one of the following Microsoft Web sites:

How to obtain help and support for this security update


Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information

Known issues and additional information about this security update

For more information about this security update and for information about any known issues with specific releases of this software, click the following article number to view the article in the Microsoft Knowledge Base:

958869 MS09-062: Description of the security update for GDI+ for all editions of Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008 and for Windows Server 2000 with Internet Explorer 6 Service Pack 1: October 13, 2009

970892 MS09-062: Description of the security update for SQL Server 2005 Service Pack 3 GDR: October 13, 2009

970894 MS09-062: Description of the security update for SQL Server 2005 Service Pack 3 QFE: October 13, 2009
970895 MS09-062: Description of the security update for GDI+ for SQL Server 2005 Service Pack 2 GDR: October 13, 2009
970896 MS09-062: Description of the security update for SQL Server 2005 Service Pack 2 QFE: October 13, 2009
970899 MS09-062: Description of the security update for GDI+ for SQL Server 2000 Reporting Services Service Pack 2: October 13, 2009
971022 MS09-062: Description of the security update for Microsoft Visual Studio 2003 Service Pack 1: October 13, 2009

971023 MS09-062: Description of the security update for Microsoft Visual Studio 2005 Service Pack 1: October 13, 2009

971104 MS09-062: Description of the security update for Microsoft Visual FoxPro 8.0 Service Pack 1: October 13, 2009

971105 MS09-062: Description of the security update for Microsoft Visual FoxPro 9.0 Service Pack 2: October 13, 2009

971108 MS09-062: Description of the security update for Microsoft .NET Framework 1.1 Service Pack 1: October 13, 2009

971110 MS09-062: Description of the security update for Microsoft .NET Framework 2.0 Service Pack 1: October 13, 2009

971111 MS09-062: Description of the security update for Microsoft .NET Framework 2.0 Service Pack 2: October 13, 2009

971117 MS09-062: Description of the security update for Microsoft Report Viewer 2005 Service Pack 1 Redistributable Package: October 13, 2009

971118 MS09-062: Description of the security update for Microsoft Report Viewer 2008 Redistributable Package: October 13, 2009

971119 MS09-062: Description of the security update for Microsoft Report Viewer 2008 Service Pack 1 Redistributable Package: October 13, 2009

972221 MS09-062: Description of the security update for Microsoft Visual Studio 2008: October 13, 2009

972222 MS09-062: Description of the security update for Microsoft Visual Studio 2008 Service Pack 1: October 13, 2009

972580 MS09-062: Description of the security update for Office 2003: October 13, 2009

972581 MS09-062: Description of the security update for the 2007 Office system: October 13, 2009

974811
MS09-062: Description of the security update for Office XP: October 13, 2009
973636 MS09-062: Description of the security update for Microsoft Works 8: October 13, 2009

975337 MS09-062: Description of the security update for GDI+ for Microsoft Platform SDK Redistributable: October 13, 2009

975365 MS09-062: Description of the security update for GDI+ for Microsoft Visio 2002: October 13, 2009
975962 MS09-062: Description of the security update for Forefront Client Security on Windows 2000: October 13, 2009



Note In addition to the products listed in the Applies To section, this update also applies to Microsoft Report Viewer Redistributable 2008 SP1.
Properties

Article ID: 957488 - Last Review: May 9, 2012 - Revision: 1

Feedback