JPEGScan 1.01

JPEGScan 1.01 Screenshot On September 14 2004, Nick DeBaggis discovered a buffer overrun vulnerability in gdiplus.

Developer:   DiamondCS
      software by DiamondCS →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows Vista (?)
Rating:   0 /5 (0 votes)

On September 14 2004, Nick DeBaggis discovered a buffer overrun vulnerability in gdiplus.dll - a library used by many common applications (including most Microsoft applications) for viewing JPEG images.

Subsequent analysis by the eEye team confirmed that the vulnerability could be exploited to execute arbitrary code, allowing an attacker to gain control of a remote system simply by enticing the victim to look at a specially-crafted JPEG image. MS04-028 is the tracking code assigned by Microsoft to this specific vulnerability.

If the program used to view the JPEG file uses a vulnerable version of gdiplus.dll then yes, and unfortunately a lot of software is affected. To scan for vulnerable versions of gdiplus.dll on your system please see these resources: Microsoft SANS

DiamondCS JPEGScan is a free, small, fast and easy-to-use scanner that has detection and repair capabilities for JPEG files infected with the MS04-028 exploit.

JPEGScan can detect all known variants of the exploit, and accomplishes this not by string searching or anti-viral signature scanning but rather by properly walking through all blocks in the JPEG searching for the undersized boundaries in comment sections that indicates the presence of MS04-028 infection.

Repairing renders the file harmless by readjusting undersized boundaries to their proper size, and if the file was based on a real JPEG then it should also become viewable.

If you simply want infected files deleted rather than repaired, JPEGScan can handle that also.

JPEGScan also allows for one-click integration into Explorer's context menu, allowing you to easily right-click on any file, directory or drive and start scanning immediately for infected JPEG images.

Although all users will find this tool useful, network administrators in particular will enjoy being able to sweep entire networks for infected images. For reasons of speed, optimization and accuracy, the main scan routines were written in assembly language, making JPEGScan basically as fast as it possibly can be

tags gdiplus dll  ms04 028  the file  for infected  undersized boundaries  the jpeg  jpeg images  jpegscan can  

JPEGScan 1.01 screenshot


Download JPEGScan 1.01

 Download JPEGScan 1.01


Authors software

JPEGScan 1.01 JPEGScan 1.01
DiamondCS

On September 14 2004, Nick DeBaggis discovered a buffer overrun vulnerability in gdiplus.

DelLater 1.0 DelLater 1.0
DiamondCS

DiamondCS DelLater is a simple program that uses the only method that Microsoft recommend to delete files that are in use.

DiamondCS OpenPorts 1.0 DiamondCS OpenPorts 1.0
DiamondCS

DiamondCS OpenPorts is a CLI (command line interface/console) tool that allows you to see all open TCP and UDP ports on your system, including the owner process.

Similar software

JPEGScan 1.01 JPEGScan 1.01
DiamondCS

On September 14 2004, Nick DeBaggis discovered a buffer overrun vulnerability in gdiplus.

Patch for ANI Cursor Vulnerability Patch for ANI Cursor Vulnerability
eEye Digital Security

An unspecified vulnerability exists within Microsoft Windows which may possibly allow for a remote attacker to execute arbitrary code under the context of the logged in user.

eEye’s Temporary Workaround 1.0 eEye’s Temporary Workaround 1.0
eEye Digital Security

eEye Digital Security is advising customers to the existence of exploit code that targets a critical security vulnerability in Microsoft Internet Explorer.

Scott's JPEG Commenter 1.1 Scott's JPEG Commenter 1.1
SB Software

Scott's JPEG Commenter is a free utility used to insert comments into JPEG files.

OptimumJPEG 1.1.0.3 OptimumJPEG 1.1.0.3
Theorica Software

OptimumJPEG (Jpeg Reduction Module) is a *FREE* utility that resizes and reduces size of images (JPEG files) and prepares them to be published on the internet.

CRW Repair 1.0.0.49 CRW Repair 1.0.0.49
GetData Pty Ltd

CRW Repair is a data recovery tool designed for Canon RAW (.

JPEG & PNG Stripper 1.4.0.29 JPEG & PNG Stripper 1.4.0.29
Steelbytes

JPEG & PNG Stripper - remove unncessary metadata from JPG/JPEG/JFIF & PNG files.

SWF To Image library 1.24 SWF To Image library 1.24
ByteScout

SWF To Image library is a freeware ActiveX/NET library for converting flash (SWF) files into BMP, JPEG and GIF image files.

McAfee AVERT Stinger 2.6.0 McAfee AVERT Stinger 2.6.0
Networks Associates

Stinger is a stand-alone utility used to detect and remove specific viruses.

JPEG Saver 3.1.3 JPEG Saver 3.1.3
Goat 1000

JPEG Saver is a application that create screensavers from your jpegIt's a Windows screen saver for displaying images with a few options that make it a bit more interesting.

Other software in this category




CleanCIH 1.6 CleanCIH 1.6
Proland

Clean your PC from the Win95.

Klez Removal Tool 1.0.11 Klez Removal Tool 1.0.11
Symantec Corporation

W32.

WinImp 1.21 WinImp 1.21
Technelysium

WinImp is a new file archiver which not only recognises common archive formats, but also introduces a new, high performance archive format.

Softpit PC Search Light 1.3 Softpit PC Search Light 1.3
Goldmarc Technology AS

The softpit PC search light is a useful utility for people who need to find critical information fast and precisely on their own computer.