Skip navigation
Menu
End-User Platforms>Windows 7/8

Windows Icons and Cursors Could Allow Remote Code Execution or Denial of Service

Reported January 11, 2005, by eEye Digital Security


VERSIONS AFFECTED

  • Windows Server 2003

  • Windows XP

  • Windows 2000

  • Windows NT

  • Windows Me

  • Windows 9x


DESCRIPTION>

A vulnerability in the way Windows handles icons and cursors could allow intruders to gain control over a user's system, or cause of Denial of Service (DoS) attack if a user views HTML specifically designed to exploit the problems.

VENDOR RESPONSE

Microsoft has issued Security Bulletin MS05-002, “Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711),” to address this critical issue.

CREDIT

Discovered by eEye Digital Security>

TAGS: Security
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
PowerShell screenshot shows Where-Object cmdlet
How to Use the PowerShell Where-Object Cmdlet
Aug 04, 2022
shield_icon_laptop.jpg
What To Do When Windows Defender Is Not Working
Mar 15, 2022
Computer Screen Showing Password Dialog Box
Microsoft Edge Downloads Updated for Azure AD Sign-In & Sync
Aug 22, 2019
mktg-wp-nolabel5
How to Approach the Windows 7 to 10 Migration
Aug 01, 2019