What it detects isn't
the security exploit itself.
Rather it only shows which application(s) that might have the GDI+ exploit without
checking whether said app is already patched or not.
Even if you have applied the latest updates to the apps that's listed as having a GDI+ exploit, it will still tell you that you have to go to the link you've posted a few posts before.
I just ran it and it still shows I need to go there even though I only have Office 2007 installed and my WinXP is already SP2.
It might've detected a previous installation of Office 2003 (which I've uninstalled), or the .NET Framework 1.1 in which I've installed all the latest updates for it.
The detector can't tell
if an application have been updated or not.
But of course, you can just download it yourself like I did just now to test it a bit.
Edited by sh1leshk4, 15 January 2008 - 05:51 PM.