Vulnerabilities > CVE-2005-2308 - Unspecified vulnerability in Microsoft IE 6.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
exploit available
Summary
The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using (1) mov_fencepost.jpg, (2) cmp_fencepost.jpg, (3) oom_dos.jpg, or (4) random.jpg.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Microsoft Internet Explorer 5.0.1 JPEG Image Rendering CMP Fencepost Denial Of Service Vulnerability. CVE-2005-2308. Dos exploit for windows platform |
| id | EDB-ID:25992 |
| last seen | 2016-02-03 |
| modified | 2005-07-15 |
| published | 2005-07-15 |
| reporter | Michal Zalewski |
| source | https://www.exploit-db.com/download/25992/ |
| title | Microsoft Internet Explorer 5.0.1 JPEG Image Rendering CMP Fencepost Denial of Service Vulnerability |
References
- http://lcamtuf.coredump.cx/crash
- http://lcamtuf.coredump.cx/crash
- http://www.securityfocus.com/archive/1/405298
- http://www.securityfocus.com/archive/1/405298
- http://www.securityfocus.com/bid/14284
- http://www.securityfocus.com/bid/14284
- http://www.securityfocus.com/bid/14285
- http://www.securityfocus.com/bid/14285
- http://www.securityfocus.com/bid/14286
- http://www.securityfocus.com/bid/14286