5 matches found
Microsoft Color Management Module (icm32.dll) out-of-bounds read (CVE-2017-0061)
We have encountered a crash in the Windows Color Management library icm32.dll, in the icm32!FillushortELUTsfromlut16Tag function, while trying to display a TIFF image with a malformed embedded color profile: 7c1c.93b0: Access violation - code c0000005 first chance First chance exceptions are...
CVE-2017-0061
creationtimestamp| type| source ---|---|--- 2017-03-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41657...
Information disclosure
The Color Management Module ICM32.dll memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to bypass ASL...
CVE-2017-0061
CVE-2017-0061 concerns the Color Management Module (ICM32.dll) memory handling in Windows Vista SP2, Windows Server 2008 SP2/R2, and Windows 7 SP1. The vulnerability allows remote attackers to bypass ASLR and, in conjunction with another vulnerability, execute code via a crafted website. Affected...
Microsoft Color Management Information Disclosure Vulnerability
An information disclosure vulnerability exists in the way that the Color Management Module ICM32.dll handles objects in memory. This vulnerability allows an attacker to retrieve information to bypass usermode ASLR Address Space Layout Randomization on a targeted system. By itself, the information...