Gdiplus.dll concern - security

Discussion in 'AutoCAD' started by JPM, Oct 7, 2004.

  1. JPM

    JPM Guest

    One of Microsoft's latest security updates, MS04-028 concerns the buffer overrun/jpg problem which involves updating GDI+. I see that the AutoCAD installation has a couple of instances of gdiplus.dll. Is the buffer overrun of concern in the AutoCAD environment?
    Thanks,
    JPM
     
    JPM, Oct 7, 2004
    #1
  2. JPM

    Cy Shuster Guest

    It's my understanding that AutoCAD (and 3ds max) included gdiplus.dll from
    Microsoft with those products, since it wasn't always part of the OS. Now
    that Microsoft has updated it, you should use the updated DLL (which is
    included with XP SP2).

    It should be safe to copy the updated DLL to replace any existing
    gdiplus.dll's currently installed. If you have XP, I believe that after
    installing Microsoft's updated DLL in the Windows folder, you can simply
    delete the other copies of the dll, but this might have implications for
    uninstall or patching.

    The vulnerability comes from opening JPGs, regardless of the calling
    program.

    --Cy--

    From Discreet:

    From Late Breaking 3dsmax bulletins @
    http://www.discreet.com/support/max/faq/answer.php3?prod=dddstudio&id=862

    GDIPlus.dll Security Threat Hotfix
    Posted: September 30, 2004

    Background:

    3ds max uses a DLL called GdiPlus.dll, provided by Microsoft. Older versions
    of the file, including that of Discreet, have been discovered to contain a
    vulnerability that allows worms/viruses to be executed from within JPG
    images.

    Resolution:

    To resolve this Security Threat:

    Go to http://isc.sans.org/gdiscan.php
    Download the utility
    Run the test
    If the result is the same as bellow, then follow steps 1 or 2 depending on
    your OS.

    C:\3dsmax6\GdiPlus.dll
    Version: 5.1.3100.0

    For Windows XP, simply delete the file and run a windows update.

    For older versions of Windows, go to Microsoft's website, download the new
    GDIPlus.DLL and replace the older one.

    More information at:
    http://www.microsoft.com/technet/security/bulletin/ms04-028.mspx
     
    Cy Shuster, Oct 7, 2004
    #2
  3. JPM

    Bud Schroeder [Autodesk Inc.] Guest

    Hello,

    As Cy pointed out, you can use the latest version of this file from
    Microsoft. We are still doing some testing on this but that is the solution
    here. Once we have finished testing this a solution will be posted to the
    WEB Site.

    Hope this helps and thanks for posting to the News Groups.

    Bud Schroeder
    AutoCAD Test Development
    Autodesk Inc.
     
    Bud Schroeder [Autodesk Inc.], Oct 8, 2004
    #3
  4. JPM

    JPM Guest

    Cy and Bud,
    Thanks for your responses. I look forward to the results of AutoDesk's tests.
    It is unfortunate that it will be a bit of a problem to distribute the patch to all of my users (100+), but I will have to work on that.
    JPM
     
    JPM, Oct 11, 2004
    #4
Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.
Similar Threads

  1. Document Security

  2. Emergency Response & Homeland Security

  3. FAS security

  4. Solidworks 2005 Concern

  5. Security Alert- LienVandeKelder.exe

  6. Security issue

  7. Problems starting SWX 2006 SP3 with Norton Internet Security firewall on

  8. DLL file CMONDLL.DLL

Loading...