https://www.exploit-db.com/exploits/25992
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200507-225

MicrosoftInternetExplorer是非常流行的WEB浏览器。MicrosoftInternetExplorer浏览器所使用的JPEG解码器存在缓冲区溢出漏洞。攻击者通过特定的JPEG图形，如mov_fencepost.jpg、cmp_fencepost.jpg、oom_dos.jpg、random.jpg，使JPEG解码器在处理这些文件的时候产生缓冲区溢出，从而使CPU资源耗尽导致拒绝服务和使攻击者能够执行任意代码。

source: http://www.securityfocus.com/bid/14284/info

Microsoft Internet Explorer is prone to an unspecified denial of service vulnerability in the JPEG image rendering library used by the browser. This issue is reportedly similar to the one described in BID 14282.

This issue was identified by creating random input for the browser, and has not been researched further at this time. This BID will be updated as further information is disclosed.

Successful exploitation results in crashing the affected Web browser. It may be possible that execution of arbitrary code may also be achieved, but this has not been confirmed. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/25992-1.jpg

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/25992-2.jpg

来源:BID
名称:14286
链接:http://www.securityfocus.com/bid/14286
来源:BID
名称:14285
链接:http://www.securityfocus.com/bid/14285
来源:BID
名称:14284
链接:http://www.securityfocus.com/bid/14284
来源:BUGTRAQ
名称:20050715CompromisingpicturesofMicrosoftInternetExplorer!
链接:http://www.securityfocus.com/archive/1/405298
来源:MISC
链接:http://lcamtuf.coredump.cx/crash