Microsoft GDI+, Firefox XSL Overflows

Microsoft Windows GDI Buffer Overflow: A programming error in the Microsoft Windows kernel may allow a remote attacker to execute code with system level privileges. This may be exploited when specially crafted EMF files are viewed using Microsoft Internet Explorer. A rule to detect attacks targeting this vulnerability is included in this release and is identified with GID 1, SID 15430. Mozilla Firefox XSL Buffer Overflow: A programming error in Mozilla Firefox may allow a remote attacker to execute code on a victim machine. The error is exposed when the application attempts to process an XML file that has a specially crafted XSLT transform. A rule to detect attacks targeting this vulnerability is included in this release and is identified with GID 1, SID 15431.