Internet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote attackers to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2004-09-01T04:00:00
Updated: 2006-11-01T00:00:00
Reserved: 2002-10-04T00:00:00
Link: CVE-2002-1185
JSON object: View
NVD Information
Status : Modified
Published: 2002-12-11T05:00:00.000
Modified: 2021-07-23T12:55:03.667
Link: CVE-2002-1185
JSON object: View
Redhat Information
No data.
CWE