Intrusion Prevention

Bitmap.Header.BiClrUsed.Integer.Overflow

Description

This indicates an attempt to exploit an Overflow vulnerability in various products when handling a BMP file.
The vulnerability is caused by an error that occurs when the vulnerable software handles a specially crafted .BMP file with a malformed field. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted BMP file.

Affected Products

Microsoft Office XP Service Pack 3
IBM Notes and Domino 9.0.1 Fix Pack 3 (plus Interim Fixes) and earlier
IBM Notes and Domino 8.5.3 Fix Pack 6 (plus Interim Fixes) and earlier
All 9.0 and 8.5.x releases of IBM Domino prior to those listed above.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

CVE References

CVE-2015-1903 CVE-2009-2518