IE v5.5 Malformed PNG Image File Failure VulnerabilityID: oval:org.mitre.oval:def:542 | Date: (C)2004-01-27 (M)2021-07-27 |
Class: VULNERABILITY | Family: windows |
Internet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote attackers to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."
Platform: |
Microsoft Windows 2000 |
Product: |
Microsoft Internet Explorer |