Reported July 12, 2005 by Microsoft
Windows Server 2003
The JView Profiler
contains a flaw in the way it processes International Color Code (ICC)
profile format tags. The flaw could allow a remote intruder to take
control of an affected system.
Microsoft released a
security bulletin, "Vulnerability
in Microsoft Color Management Module Could Allow Remote Code Execution
patch to correct the problem.
Discovered by Shih-hao
Weng of Information & Communication Security Technology Center