Reported January 11, 2005, by eEye Digital Security
Windows Server 2003
A vulnerability in the way Windows handles icons and cursors could allow intruders to gain control over a user's system, or cause of Denial of Service (DoS) attack if a user views HTML specifically designed to exploit the problems.
Microsoft has issued Security Bulletin MS05-002, “Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711),” to address this critical issue.
Discovered by eEye Digital Security>