CVE-2007-0038
CVE-2007-0038
Stack-based buffer overflow in the animated cursor code in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a large length value in the second (or later) anih block of a RIFF .ANI, cur, or .ico file, which results in memory corruption when processing cursors, animated cursors, and icons, a variant of CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this might be a duplicate of CVE-2007-1765; if so, then CVE-2007-0038 should be preferred.
Affected products
n/a · n/apublic PoCs found — 16
githubgithub.com/Axua/CVE-2007-0038★ 1exploitdbwww.exploit-db.com/exploits/3684unverifiedexploitdbwww.exploit-db.com/exploits/3647unverifiedexploitdbwww.exploit-db.com/exploits/3695unverifiedexploitdbwww.exploit-db.com/exploits/3652unverifiedexploitdbwww.exploit-db.com/exploits/3617unverifiedexploitdbwww.exploit-db.com/exploits/3688unverifiedexploitdbwww.exploit-db.com/exploits/3755unverifiedexploitdbwww.exploit-db.com/exploits/3804unverifiedexploitdbwww.exploit-db.com/exploits/16526unverifiedexploitdbwww.exploit-db.com/exploits/16698unverifiedexploitdbwww.exploit-db.com/exploits/3636unverifiedexploitdbwww.exploit-db.com/exploits/3651unverifiedexploitdbwww.exploit-db.com/exploits/4045unverifiedexploitdbwww.exploit-db.com/exploits/3635unverifiedexploitdbwww.exploit-db.com/exploits/3634unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0470.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-017http://secunia.com/advisories/24659http://securityreason.com/securityalert/2542https://exchange.xforce.ibmcloud.com/vulnerabilities/33301https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1854http://www.determina.com/security_center/security_advisories/securityadvisory_0day_032907.asphttp://www.kb.cert.org/vuls/id/191609http://www.osvdb.org/33629http://www.securityfocus.com/archive/1/464269/100/0/threadedhttp://www.securityfocus.com/archive/1/464339/100/0/threadedhttp://www.securityfocus.com/archive/1/464340/100/0/threaded