HTTP: BMP Bad Parameter
This anomaly triggers under the following conditions: The bits per pixel field (offset 001ch) is not valid. The width (offset 0012h) OR height (offset 0016h) is greater than the threshold equal to 32,000. These incidents can indicate malicious behavior aimed at your system.
Extended Description
Mozilla Browser is reportedly prone to multiple integer overflow vulnerabilities in the image parsing routines. These issues exist due to insufficient boundary checks performed by the application. A remote attacker may cause denial of service conditions in the client or execute arbitrary code to gain unauthorized access to a vulnerable computer. These vulnerabilities were researched on Mozilla 1.7, however, other versions may be affected as well. Thunderbird 0.7 was also tested.
Affected Products
Conectiva linux
References
BugTraq: 11171
CVE: CVE-2007-1942
URL: http://www.kb.cert.org/vuls/id/847200 http://atlc.sourceforge.net/bmp.html
Short Name
HTTP:STC:IMG:BMP-BAD-PARAMETER
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2004-0904 CVE-2007-1942 bad bid:11171 bmp parameter
Release Date
11/07/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Red_hat
Mozilla
Conectiva
Netscape
CVSS Score
9.3
10.0