Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, which leads to a buffer overflow, aka the Cursor and Icon Format Handling Vulnerability.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Windows_2000 | Microsoft | * | * |
Windows_2003_server | Microsoft | r2 (including) | r2 (including) |
Windows_nt | Microsoft | * | * |
Windows_xp | Microsoft | * | * |