HTTP: Microsoft Internet Explorer PNG Image Rendering Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Microsoft Internet Explorer. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the current user.
Extended Description
Microsoft Internet Explorer is prone to a buffer overflow vulnerability. This issue exists in the PNG image rendering library used by the browser. Successful exploitation will result in execution of arbitrary code in the context of the currently logged in user. This issue is present in the PNG image rendering library, so it is possible that other applications that use the library are affected. This is not confirmed and Symantec is not aware of any such applications.
Affected Products
Microsoft internet_explorer
Short Name
HTTP:STC:IE:PNG-IMAGE-BO
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2005-1211 Explorer Image Internet Microsoft Overflow PNG Rendering bid:13941
Release Date
12/17/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3759
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.1