Security Advisor
Home About Us Remote Help Contact Disclosure Feedback Privacy Policy 
 


Remote Services
Our Services
Affiliate Partners
Service Partners
Security Advisor

 

 

   


 Click Here to check Norton Alerts

 

CA Security Advisor Threat Alert Service

Threat Alert EmailsEmail notification of new critical vulnerabilities or viruses

 

 

Microsoft Windows Color Management Module ICC buffer overflow vulnerability
Date Discovered: Tuesday, July 12, 2005
Date Published: Tuesday, July 12, 2005
Last Updated: Tuesday, July 12, 2005		  
 
 
 
Threat Assessment
Overall Risk:  High

High
Impact:  Critical

Critical
Popularity:  Critical

Critical
Simplicity:  Low

Low
Vulnerability Description
Vulnerability ID:  33154 Discovered By:  Shih-hao Weng
Exploitable Locally:  No Exploitable Remotely:  Yes
Impact:  Remote attackers can execute arbitrary code.

Root Cause:  Software Vulnerability
 

Microsoft Windows contains a vulnerability that can allow an attacker to execute arbitrary code. The vulnerability is due to improper bounds checking by the Microsoft Color Management Module when performing ICC profile format tag validation. Attackers can exploit the vulnerability by creating a carefully crafted image and enticing a victim into viewing it.
 

 

 
 

Remote Services | Our Services | Affiliate Partners | Service Partners | Security Advisor
Copyright © 2006 TRS Enterprises, LLC. All rights reserved