CVE-2008-2245

creationtimestamp| type| source ---|---|--- 2008-10-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6732...

Microsoft Windows Image Color Management System Code Execution Vulnerability (952954)

This host is missing a critical security update according to Microsoft Bulletin MS08-046. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows图形颜色管理组件堆溢出漏洞（MS08-046）

BUGTRAQ ID: 30594 CVECAN ID: CVE-2008-2245 Microsoft Windows是微软发布的非常流行的操作系统。 Windows操作系统中所捆绑的图形颜色管理（ICM）组件使用Microsoft颜色管理系统（MSCMS）模块帮助用户跨各种设备（扫描仪、相机、打印机等）始终一致的重新生成颜色。mscms.dll库的InternalOpenColorProfile函数没有正确地验证超长参数，如果用户受骗打开了特制的图像文件，就可能触发堆溢出，导致执行任意代码。 Microsoft Windows XP SP3 Microsoft Windows XP...

CVE-2008-2245

CVE-2008-2245 affects Microsoft Windows Image Color Management System (ICM) via a heap-based overflow in mscms.dll (InternalOpenColorProfile). The vulnerability, in the ICCM/ICM component, allows remote code execution when a crafted image file is opened. Affected systems include Windows 2000 SP4,...

iDefense Security Advisory 08.12.08: Microsoft Windows Color Management Module Heap Buffer Overflow Vulnerability

iDefense Security Advisory 08.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 12, 2008 I. BACKGROUND Microsoft Windows Color Management Module provides consistent color mappings between different devices and applications. It is also used to transform colors between color spaces...

Microsoft Color Management System (MSCMS) module remote code execution

Overview The Microsoft Color Management System MSCMS module for the Microsoft ICM component is vulnerable to a remote code execution vulnerability which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description According to Microsoft, the Microsoft...