SMTP: .ANI
This signature detects e-mail attachments that have the extension .ANI (animated cursors) and were sent through SMTP. A vulnerability exists in the way Windows parses ANI and cursor file headers. Attackers can create malicious icon files, tricking users into opening or viewing the file and infecting the system.
Extended Description
Microsoft Windows is prone to a denial of service when processing specially formed ANI files. The Windows kernel fails to perform proper sanitization on the frame or rate number set in the ANI file header, which may result in a system crash.
Affected Products
Microsoft windows_98
Short Name
SMTP:EXT:DOT-ANI
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
.ANI CVE-2004-1305 bid:12094
Release Date
01/14/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Nortel_networks
Microsoft
CVSS Score
5.0