Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1049

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2004-1049
Last Modified 10 Sep 2008 03:28:50
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-1049

Summary

Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, which leads to a buffer overflow, aka the "Cursor and Icon Format Handling Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows Nt

  • Microsoft Windows Xp


References

CERT - TA05-012A

CERT-VN - VU#625856

MISC - http://www.xfocus.net/flashsky/icoExp/index.html

MS - MS05-002

BUGTRAQ - 20041223 Microsoft Windows LoadImage API Integer Buffer overflow

XF - win-loadimage-bo(18668)

BID - 12095

OSVDB - 12623

CIAC - P-094

SECTRACK - 1012684

SECUNIA - 13645


Last Updated: 27 May 2016 10:38:52