Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet Explorer 6.0 on Windows XP SP2, and possibly other versions, allows remote malicious users to execute arbitrary code via a Vector Markup Language (VML) file with a long fill parameter within a rect tag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft outlook 2003 |
||
microsoft internet_explorer 6.0 |
||
microsoft internet_explorer 5.0.1 |