cve/CVE-2007-0038.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Stack-based buffer overflow in the animated cursor code in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a large length value in the second (or later) anih block of a RIFF .ANI, cur, or .ico file, which results in memory corruption when processing cursors, animated cursors, and icons, a variant of CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this might be a duplicate of CVE-2007-1765; if so, then CVE-2007-0038 should be preferred.

POC

Reference

http://securityreason.com/securityalert/2542
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-017

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Axua/CVE-2007-0038
https://github.com/CVEDB/PoC-List
https://github.com/CVEDB/awesome-cve-repo
https://github.com/Cruxer8Mech/Idk
https://github.com/ycdxsb/WindowsPrivilegeEscalation

1.3 KiB Raw Blame History

CVE-2007-0038

Description

POC

Reference

Github

1.3 KiB

Raw Blame History