MS.IE.Bitmap.Process.Integer.Overflow
Description
It indicates a possible exploit of Integer overflow Vulnerability in Microsoft Internet Explorer.
A Integer Overflow vulnerability is reported in Microsoft Internet Explorer that may allow an attacker execute arbitrary code on the vulnerable system. This is due to imgbmp.cxx function failure to sanitize BMP image file while parsing them. An attacker may send malformed BMP image file with a large bfOffBits value or persuade a victim to click malicious link to cause Integer overflow and leading to system compromise by executing arbitrary code on the vulnerable system.
Affected Products
Microsoft Internet Explorer 5.5 SP2 and earlier versions.
Impact
Compromise of the affected system.
Recommended Actions
Apply security patch to the system as given in the Microsoft bulletins MS04-025.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |