CVE-2007-5133

Description

Microsoft Windows Explorer (explorer.exe) allows user-assisted remote attackers to cause a denial of service (CPU consumption) via a certain PNG file with a large tEXt chunk that possibly triggers an integer overflow in PNG chunk size handling, as demonstrated by badlycrafted.png.

Related CPE's

omicrosoftwindows_2003_server*gold******

omicrosoftwindows_xp**x64*****

omicrosoftwindows_2003_server**std*****

omicrosoftwindows_vista**starter*****

omicrosoftwindows_xp*goldtablet_pc*****

omicrosoftwindows_xp**tablet_pc*****

omicrosoftwindows_2003_server*r2******

omicrosoftwindows_xp**embedded*****

omicrosoftwindows_vista**x64-business*****

omicrosoftwindows_2003_server*sp2x64*****

References

25816

Exploit

45521

20070927 Re: Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling

20070927 Re: Possible Windows Explorer bad PNG file preview integer overflow handling

20070927 Re: Re: Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling

20070926 Re: Confirmed: Windows Explorer bad PNG file preview integer overflow handling

20070925 Possible Windows Explorer bad PNG file preview integer overflow handling

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:M/Au:N/C:N/I:N/A:C

AccessVector

NETWORK

AccessComplexity

MEDIUM

Authentication

NONE

ConfidentialityImpact

NONE

IntegrityImpact

NONE

AvailabilityImpact

COMPLETE

BaseScore

7.099999904632568

Created by Yello
About Severity.io