MS.Windows.Color.Management.Module.Remote.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow vulnerability in the color management module ICC profile of Microsoft Windows.
The vulnerability is caused by an error when the vulnerable software handles a malformed ICC (International Color Consortium) profile file. It may allow remote attackers to execute arbitrary code on vulnerable systems.
Affected Products
Microsoft Windows 2000 SP4
Windows XP SP2
Windows 2003 SP1
Windows 98
Including all earlier service packs.
Nortel Networks Centrex IP Client Manager.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for a suggest workaround.
http://www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |