12 matches found
Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflow
No description provided by source. $Id: ms11006createsizeddibsection.rb 11730 2011-02-08 23:31:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing...
Microsoft Windows Picture and Fax Viewer Library Vulnerability !
Microsoft Windows Picture and Fax Viewer Library Vulnerability ! I. BACKGROUND The Windows Picture and Fax Viewer "shimgvw.dll" library is used by Windows Explorer to generate thumbnail previews for media files. II. DESCRIPTION Remote exploitation of a buffer overflow vulnerability in multiple...
Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185)
This host is missing a critical security update according to Microsoft Bulletin MS11-006. OpenVAS Vulnerability Test $Id: secpodms11-006.nasl 5362 2017-02-20 12:46:39Z cfi $ Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution 2483185 Authors: Madhuri D Copyright:...
MS11-006 Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflow
This module exploits a stack-based buffer overflow in the handling of thumbnails within .MIC files and various Office documents. When processing a thumbnail bitmap containing a negative 'biClrUsed' value, a stack-based buffer overflow occurs. This leads to arbitrary code execution. In order to...
CVE-2010-3970
creationtimestamp| type| source ---|---|--- 2011-02-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16660 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms11006createsizeddibsection.rb 2025-02-06...
MS11-006: Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185)
If a remote attacker can trick a user on the affected host into opening a specially crafted bitmap file, a vulnerability in the graphics rendering engine that arises due to its failure to validate the 'biClrUsed' parameter could be leveraged to execute arbitrary code on the host subject to the...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Microsoft Windows graphics engine thumbnail stack buffer overflow
Overview Microsoft Windows contains a stack-based buffer overflow vulnerability in the graphics rendering engine, which may allow an attacker to execute arbitrary code. Description Microsoft Windows contains a stack-based buffer overflow vulnerability caused by a signedness error in the...
CVE-2010-3970
Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor aka graphics rendering engine in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary...
CVE-2010-3970
CVE-2010-3970 is a stack-based buffer overflow in CreateSizedDIBSECTION within shimgvw.dll (Windows Shell Graphics Processing). It is triggered by a crafted thumbnail bitmap (e.g., via a negative biClrUsed value) and can allow remote code execution. Affected products include Windows XP SP2/SP3, S...