Install the update as described in Microsoft Security Bulletin MS05-002. Image could trigger exploitation for instance, browsing the file system, reading HTML email, or browsing websites. Potentially, any operation that displays an
If a remote attacker can persuade a user to access a specially crafted bitmap image, icon, or cursor file, the attacker may be able toĮxecute arbitrary code on that user's system, with their privileges. Note that exploits for these vulnerabilities are publicly available. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. VU#177584 - Microsoft Windows kernel vulnerable to denial-of-service condition via animated cursor (.ani) frame numberĪ vulnerability exists in the way the Microsoft Windows kernel processes animated cursor (.ani) files with a frame number set to zero. VU#697136 - Microsoft Windows kernel vulnerable to denial-of-service condition via animated cursor (.ani) rate numberĪ vulnerability exists in the way the Microsoft Windows kernel processes animated cursor (.ani) files with a rate number set to zero. The Microsoft Windows LoadImage routine is vulnerable to an integer overflow that may allow a remote attacker to execute arbitrary code on a vulnerable system. VU#625856 - Microsoft Windows LoadImage API vulnerable to integer overflow Further details are available in the following vulnerability notes:
Microsoft Security Bulletin MS05-002 describes a number of vulnerabilities in the way that Windows handles icons, cursors, animated cursors, and bitmaps.
0 kommentar(er)
