Latest IE hole :: PNG Vulnerability :: Other Apps
Cumulative Patch for Internet Explorer :: Microsoft TechNet
Note as usual this affects multiple components, not just IE. If you're on the redmond hobby-horse, get patching.
A buffer overrun vulnerability that occurs because Internet Explorer does not correctly check the parameters of a PNG graphics file when it is opened.
PNG (Portable Network Graphics) Deflate Heap Corruption Vulnerability
During a review of the PNG image format implemented in Microsoft Windows, two separate vulnerabilities were discovered related to the interpretation of PNG image data. The first vulnerability deals with the handling of the IDAT header and does not appear to be of significant threat level. The second vulnerability can be exploited to execute code when the malicious PNG image is viewed. Due to the complexity of each of these vulnerabilities we have decided only to describe the latter in detail.
0 TrackBacks
Listed below are links to blogs that reference this entry: Latest IE hole :: PNG Vulnerability :: Other Apps.
TrackBack URL for this entry: http://kennethhunt.com/mt/mt-tb.cgi/486
Search
Safari Online
invest in kevlar
chris harrison
Mike Erdely
The Open Prosthetics Project
Andrew W. Moore
Talking Out Loud with ASB
ducea
Andrew Baker
*scottstuff*
Ask Bjorn Hansen
Joe Topjian
John Sequeira's Weblog
Team Murder
defective yeti
postneo
Ben Hammersley
Chez Chrissie
The Frosty Mug Revolution
Jeremy Zawodny's blog
Lucas Gonze
Eric Norlin
slashdot
John Vu
Net Observer
Books Observer
Sterling
Bill Buxton
Melanie Rieback
invest in kevlar
chris harrison
Mike Erdely
The Open Prosthetics Project
Andrew W. Moore
Talking Out Loud with ASB
ducea
Andrew Baker
*scottstuff*
Ask Bjorn Hansen
Joe Topjian
John Sequeira's Weblog
Team Murder
defective yeti
postneo
Ben Hammersley
Chez Chrissie
The Frosty Mug Revolution
Jeremy Zawodny's blog
Lucas Gonze
Eric Norlin
slashdot
John Vu
Net Observer
Books Observer
Sterling
Bill Buxton
Melanie Rieback