Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2017-0063

🗓️ 17 Mar 2017 00:00:00Reported by microsoftType 
cve
 cve🔗 web.nvd.nist.gov👁 97 Views🌐 WEB

Color Management Module (ICM32.dll) memory handling functionality vulnerability in multiple Windows version

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		Microsoft Color Management Module icm32.dll - icm32!LHCalc3toX_Di16_Do16_Lut8_G32 Out-of-Bounds Read
20 Mar 201700:00
zdt
BDU FSTEC		The vulnerability of the Windows operating system, which allows a perpetrator to trigger a service failure or otherwise affect the system.
31 Mar 201700:00
bdu_fstec
Circl		CVE-2017-0063
20 Mar 201700:00
circl
CNVD		Microsoft Windows Color Management Information Disclosure Vulnerability (CNVD-2017-03766)
20 Mar 201700:00
cnvd
Cvelist		CVE-2017-0063
17 Mar 201700:00
cvelist
Microsoft KB		March 2017 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2
14 Mar 201707:00
mskb
Microsoft KB		MS17-013: Description of the security update for Microsoft Graphics Component: March 14, 2017
14 Mar 201707:00
mskb
Microsoft KB		March 14, 2017—KB4012606 (OS Build 10240.17319)
14 Mar 201707:00
mskb
Microsoft KB		MS17-013: Security Update for Microsoft Graphics Component: March 14, 2017
14 Mar 201700:00
mskb
Microsoft KB		March 14, 2017—KB4013198 (OS Build 10586.839)
14 Mar 201707:00
mskb
Rows per page
[
  {
    "product": "Color Management",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
PoC zip file for vulnerability CVE-2017-0063binarygithub.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/41659.zipProof-of-concept exploit archive for Windows Color Management vulnerability (CVE-2017-0063) affecting icm32.dll; enables remote code execution via crafted content.CWE-200

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 00:57Current
5.4Medium risk
Vulners AI Score5.4
CVSS 24.3
CVSS 36.5
EPSS0.3528
CWE-200
cve-2017-0063color management moduleicm32.dllmemory handlingwindowsvulnerabilityremote code executionaslr bypasssecuritynvd
97