Microsoft Windows Explorer ANI File Denial of Service Vulnerability
BID:23373
Info
Microsoft Windows Explorer ANI File Denial of Service Vulnerability
| Bugtraq ID: | 23373 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2007 12:00AM |
| Updated: | Apr 10 2007 12:12AM |
| Credit: | marsu is credited with the discovery of this vulnerability. |
| Vulnerable: |
Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Professional x64 Edition SP2 Microsoft Windows XP Professional SP2 Microsoft Windows XP Media Center Edition SP2 Microsoft Windows XP Home SP2 |
| Not Vulnerable: | |
Discussion
Microsoft Windows Explorer ANI File Denial of Service Vulnerability
Windows Explorer is prone to a denial-of-service vulnerability.
An attacker could exploit this issue to cause Explorer to crash, effectively denying service. Arbitrary code execution may be possible, but this has not been confirmed.
This issue affects Windows Explorer on Microsoft Windows XP SP2; other operating systems and versions may also be affected.
Windows Explorer is prone to a denial-of-service vulnerability.
An attacker could exploit this issue to cause Explorer to crash, effectively denying service. Arbitrary code execution may be possible, but this has not been confirmed.
This issue affects Windows Explorer on Microsoft Windows XP SP2; other operating systems and versions may also be affected.
Exploit / POC
Microsoft Windows Explorer ANI File Denial of Service Vulnerability
The following demonstration exploit is available:
The following demonstration exploit is available:
Solution / Fix
Microsoft Windows Explorer ANI File Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Microsoft Windows Explorer ANI File Denial of Service Vulnerability
References:
References:
- Microsoft Windows Homepage (Microsoft )