Microsoft Internet Explorer - '.ANI' Remote Stack Overflow (MS05-002) (2)
Credit for the vulnerability: Yuji Ukai for eEye Digital Security Patch: http://www.microsoft.com/technet/security/bulletin/MS05-002.mspx Changelog for 3.2: - Putting the .ANI file in the HEAD sometimes caused the BoF to trigger before the heap was prepared, fixed that by putting it in the BODY. ...