Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2004-1049

Description

Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, which leads to a buffer overflow, aka the "Cursor and Icon Format Handling Vulnerability."

POC

Reference

- http://marc.info/?l=bugtraq&m=110382891718076&w=2

- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-002

Github

- https://github.com/ARPSyndicate/cve-scores