Internet Explorer 5.01 up to and including 6.0 does not properly check certain parameters of a PNG file when opening it, which allows remote malicious users to cause a denial of service (crash) by triggering a heap-based buffer overflow using invalid length codes during decompression, aka "Malformed PNG Image File Failure."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer 5.5 |
||
microsoft internet explorer 6.0 |
||
microsoft internet explorer 5.0.1 |
||
microsoft ie 6.0 |