mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-16 20:27:21 +00:00
970 B
970 B
CVE-2004-1305
Description
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or (2) the rate number set to zero, which leads to resource exhaustion and hang.
POC
Reference
- http://marc.info/?l=bugtraq&m=110382854111833&w=2
- http://www.kb.cert.org/vuls/id/177584
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-002
Github
No PoCs found on GitHub currently.