Microsoft Windows XP – ‘explorer.exe .tiff’ Image Denial of Service

Microsoft Windows XP – ‘explorer.exe .tiff’ Image Denial of Service

漏洞ID 1054631 漏洞类型
发布时间 2004-09-16 更新时间 2004-09-16
图片[1]-Microsoft Windows XP – ‘explorer.exe .tiff’ Image Denial of Service-安全小百科CVE编号 N/A
图片[2]-Microsoft Windows XP – ‘explorer.exe .tiff’ Image Denial of Service-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24605
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/11202/info

Explorer.exe that ships with Microsoft Windows XP prior to Windows XP SP2 is reported prone to a denial of service vulnerability. 

The vulnerability is reported to exist when Explorer.exe handles certain TIFF format images.

A remote attacker may exploit this vulnerability by presenting a malicious image to a victim user. When this image is processed in a sufficient manner, system resources will be consumed. This will impact the performance of the computer, effectively denying service to legitimate users.

The following example TIFF image is available:

49 49 2a 00 08 00 00 00 01 00 00 01 03 00 01 00
00 00 01 00 00 00 08 00 00 00

This should be placed in a file and given a '.tif' extension.

相关推荐: Microsoft Internet Explorer mms Protocol Handler Executable Command Line Injection Vulnerability

Microsoft Internet Explorer mms Protocol Handler Executable Command Line Injection Vulnerability 漏洞ID 1098108 漏洞类型 Input Validatio…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享